The attack starts with a phishing email disguised as a fund transfer notification, with an attached Excel file named “swift copy.xls” that triggers the deployment of Snake Keylogger on the victim’s computer upon opening.
Once installed, the Rocinante malware prompts the victim to grant Accessibility Services and displays phishing screens tailored to different banks to steal personal information.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-31 08:06:342024-08-31 08:06:34Rocinante: The Trojan Horse That Wanted to Fly
The QiAnXin Threat Intelligence Center has revealed the details of “Operation DevilTiger,” a cyber espionage campaign carried out by the elusive APT-Q-12 group, also known as “Pseudo Hunter.”
The ransomware operation focuses on data theft extortion rather than encrypting files, with victims facing the threat of stolen data being leaked or sold if negotiations fail.
The Godzilla fileless backdoor relies on a complex series of actions, such as cryptographic operations, class loading, and dynamic injection, to establish unauthorized access.
The campaign, which targeted organizations worldwide, involved impersonating tax authorities from various countries and utilizing Google Sheets for command and control (C2).
Industry leaders at DataGrail Summit 2024 warn of AI’s exponential growth outpacing security measures, urging companies to invest in robust AI safety systems to mitigate risks and protect consumer trust.Read More
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-30 22:07:012024-08-30 22:07:01AI is growing faster than companies can secure it, warn industry leaders
Redmond’s threat intel team said exploitation of CVE-2024-7971 can be attributed to a North Korean APT targeting the cryptocurrency sector for financial gain.
The US says efforts to improve bilateral relations with China are ongoing, alongside “necessary action” to prevent US tech from being used to undermine its national security.
The U.S. Department of State and the Secret Service are offering a reward of $2.5 million for information leading to the capture of Belarusian cybercriminal Volodymyr Kadariya, who is linked to the Angler Exploit Kit.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-30 18:06:542024-08-30 18:06:54US Offers $2.5 Million Reward for Hacker Linked to Angler Exploit Kit
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
New Snake Keylogger Variant Slithers Into Phishing Campaigns
/in General NewsThe attack starts with a phishing email disguised as a fund transfer notification, with an attached Excel file named “swift copy.xls” that triggers the deployment of Snake Keylogger on the victim’s computer upon opening.
Cyware News – Latest Cyber News – Read More
Rocinante: The Trojan Horse That Wanted to Fly
/in General NewsOnce installed, the Rocinante malware prompts the victim to grant Accessibility Services and displays phishing screens tailored to different banks to steal personal information.
Cyware News – Latest Cyber News – Read More
Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled
/in General NewsThe QiAnXin Threat Intelligence Center has revealed the details of “Operation DevilTiger,” a cyber espionage campaign carried out by the elusive APT-Q-12 group, also known as “Pseudo Hunter.”
Cyware News – Latest Cyber News – Read More
FBI: RansomHub Ransomware Breached 210 Victims Since February 2024
/in General NewsThe ransomware operation focuses on data theft extortion rather than encrypting files, with victims facing the threat of stolen data being leaked or sold if negotiations fail.
Cyware News – Latest Cyber News – Read More
Godzilla Fileless Backdoors Targeting Atlassian Confluence
/in General NewsThe Godzilla fileless backdoor relies on a complex series of actions, such as cryptographic operations, class loading, and dynamic injection, to establish unauthorized access.
Cyware News – Latest Cyber News – Read More
Suspected Espionage Campaign Delivers New Voldemort Malware
/in General NewsThe campaign, which targeted organizations worldwide, involved impersonating tax authorities from various countries and utilizing Google Sheets for command and control (C2).
Cyware News – Latest Cyber News – Read More
AI is growing faster than companies can secure it, warn industry leaders
/in General NewsIndustry leaders at DataGrail Summit 2024 warn of AI’s exponential growth outpacing security measures, urging companies to invest in robust AI safety systems to mitigate risks and protect consumer trust.Read More
Security News | VentureBeat – Read More
Microsoft Says North Korean Cryptocurrency Thieves Behind Chrome Zero-Day
/in General NewsRedmond’s threat intel team said exploitation of CVE-2024-7971 can be attributed to a North Korean APT targeting the cryptocurrency sector for financial gain.
The post Microsoft Says North Korean Cryptocurrency Thieves Behind Chrome Zero-Day appeared first on SecurityWeek.
SecurityWeek – Read More
US-China relationship remains ‘competitive’, as steps towards diplomacy strengthen
/in General NewsThe US says efforts to improve bilateral relations with China are ongoing, alongside “necessary action” to prevent US tech from being used to undermine its national security.
Latest stories for ZDNET in Security – Read More
US Offers $2.5 Million Reward for Hacker Linked to Angler Exploit Kit
/in General NewsThe U.S. Department of State and the Secret Service are offering a reward of $2.5 million for information leading to the capture of Belarusian cybercriminal Volodymyr Kadariya, who is linked to the Angler Exploit Kit.
Cyware News – Latest Cyber News – Read More