Spanish language victims are the target of an email phishing campaign that delivers a new remote access trojan (RAT) called Poco RAT since at least February 2024.
The attacks primarily single out mining, manufacturing, hospitality, and utilities sectors, according to cybersecurity company Cofense.
“The majority of the custom code in the malware appears to be focused on anti-analysis,
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 11:06:332024-07-11 11:06:33New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign
Palo Alto Networks patched a critical vulnerability in its Expedition tool and addressed the impact of the recently disclosed BlastRADIUS vulnerability.
Poco RAT was first categorized on February 7, 2024, and has since targeted customers in multiple sectors, with Mining being the primary focus. One company was the most targeted, responsible for 67% of the total volume of campaigns.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 11:06:322024-07-11 11:06:32New Malware Campaign Targeting Spanish Language Victims and the Mining Sector
A diverse workforce brings different perspectives, experiences, and problem-solving approaches to the table, enabling teams to identify vulnerabilities and develop more robust defense strategies.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 11:06:322024-07-11 11:06:32Diversifying Cyber Teams to Tackle Complex Threats
Cybersecurity analyst Eugene Lim discovered the risk posed by this vulnerability, which hackers can exploit by chaining messaging APIs in browsers and extensions, bypassing security measures like the Same Origin Policy.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 10:06:322024-07-11 10:06:32Apple needs to fix this crazy iPhone annoyance
VMware has fixed a high-severity SQL-Injection vulnerability, known as CVE-2024-22280, in its Aria Automation platform. This flaw could allow authenticated users to execute unauthorized database operations through specially crafted SQL queries.
Campaigns distributing DarkGate malware use various methods like email attachments and malicious ads. A campaign in March-April 2024 used Samba file shares hosting malicious files for DarkGate infections.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 09:06:322024-07-11 09:06:32DarkGate: Dancing the Samba With Alluring Excel Files
If Gemini is your go-to AI and MacOS is your operating system of choice, you’ll be glad to know there are ways to interact with Google’s AI from Apple’s desktop.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 09:06:322024-07-11 09:06:323 ways to interact with Gemini from the MacOS desktop
Warnings have been issued in India regarding a rise in fraudulent smishing attacks, with scammers impersonating India Post to deceive people into giving personal information or clicking on malicious links.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-11 09:06:312024-07-11 09:06:31Smishing Triad Targets India with Fraud Surge
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign
/in General NewsSpanish language victims are the target of an email phishing campaign that delivers a new remote access trojan (RAT) called Poco RAT since at least February 2024.
The attacks primarily single out mining, manufacturing, hospitality, and utilities sectors, according to cybersecurity company Cofense.
“The majority of the custom code in the malware appears to be focused on anti-analysis,
The Hacker News – Read More
Palo Alto Networks Addresses BlastRADIUS Vulnerability, Fixes Critical Bug in Expedition Tool
/in General NewsPalo Alto Networks patched a critical vulnerability in its Expedition tool and addressed the impact of the recently disclosed BlastRADIUS vulnerability.
The post Palo Alto Networks Addresses BlastRADIUS Vulnerability, Fixes Critical Bug in Expedition Tool appeared first on SecurityWeek.
SecurityWeek – Read More
New Malware Campaign Targeting Spanish Language Victims and the Mining Sector
/in General NewsPoco RAT was first categorized on February 7, 2024, and has since targeted customers in multiple sectors, with Mining being the primary focus. One company was the most targeted, responsible for 67% of the total volume of campaigns.
Cyware News – Latest Cyber News – Read More
Diversifying Cyber Teams to Tackle Complex Threats
/in General NewsA diverse workforce brings different perspectives, experiences, and problem-solving approaches to the table, enabling teams to identify vulnerabilities and develop more robust defense strategies.
Cyware News – Latest Cyber News – Read More
Universal Code Execution by Chaining Messages in Browser Extensions
/in General NewsCybersecurity analyst Eugene Lim discovered the risk posed by this vulnerability, which hackers can exploit by chaining messaging APIs in browsers and extensions, bypassing security measures like the Same Origin Policy.
Cyware News – Latest Cyber News – Read More
Apple needs to fix this crazy iPhone annoyance
/in General NewsI use my iPhone a lot. But one feature on the device is a massive annoyance and I seriously hope the issue is fixed in the iPhone 16.
Latest news – Read More
VMware Fixed Critical SQL Injection Flaw in Aria Automation Platform
/in General NewsVMware has fixed a high-severity SQL-Injection vulnerability, known as CVE-2024-22280, in its Aria Automation platform. This flaw could allow authenticated users to execute unauthorized database operations through specially crafted SQL queries.
Cyware News – Latest Cyber News – Read More
DarkGate: Dancing the Samba With Alluring Excel Files
/in General NewsCampaigns distributing DarkGate malware use various methods like email attachments and malicious ads. A campaign in March-April 2024 used Samba file shares hosting malicious files for DarkGate infections.
Cyware News – Latest Cyber News – Read More
3 ways to interact with Gemini from the MacOS desktop
/in General NewsIf Gemini is your go-to AI and MacOS is your operating system of choice, you’ll be glad to know there are ways to interact with Google’s AI from Apple’s desktop.
Latest news – Read More
Smishing Triad Targets India with Fraud Surge
/in General NewsWarnings have been issued in India regarding a rise in fraudulent smishing attacks, with scammers impersonating India Post to deceive people into giving personal information or clicking on malicious links.
Cyware News – Latest Cyber News – Read More