Daily Cybersecurity Roundup
/https://cyware-ent.s3.amazonaws.com/image_bank/3813_shutterstock_1403416379_1.jpg)
Phishing emails continue to be a primary entry point for advanced cyberattacks. Reflecting this trend, Kimsuky has launched a new campaign deploying two variants of its KimJongRAT malware through phishing emails impersonating So ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/9f53_shutterstock_1831542736.jpg)
A powerful new RAT has surfaced, raising the stakes in targeted cyber espionage operations. North Korea-linked Lazarus Group has deployed a new RAT, ScoringMathTea, through its Operation DreamJob campaign to infiltrate UAV ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/9305_shutterstock_1219986658.jpg)
As cyberespionage gains momentum across the globe, APT24’s persistent use of BADAUDIO showcases the lengths threat actors will go to maintain covert access. Over the past three years, APT24 has run an extensive cyber-espionage o ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/92dc_shutterstock_2056467455_edited.jpeg)
Cybercriminal activity is escalating across multiple fronts, with the global “TamperedChef” malvertising operation distributing fake software installers that deliver JavaScript-based remote access malware. At the same time, Iran ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/38c3_shutterstock_2174497075.jpg)
The threat landscape continues to shift quietly but steadily, with attackers introducing new techniques and refining their methods across different platforms. A new .NET malware strain is leveraging steganography to hide Lokibot ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/28fe_shutterstock_1951619836.jpg)
Iranian hackers are on a roll, with UNC1549 deploying advanced malware families like TWOSTROKE and DEEPROOT to penetrate aerospace, aviation, and defense networks across the Middle East. At the same time, IRGC-IO–linked operator ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/ef02_shutterstock_1468042955_2.jpg)
Just when you think the dragon is asleep, it breathes fire again, and DragonBreath APT proved it by unleashing RONINGLOADER to slip in an upgraded gh0st RAT while quietly disabling Windows Defender through PPL abuse. Meanwhile, ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/42b6_shutterstock_1949864122.jpg)
A recent wave of threats highlights evolving attacker tactics: a Formbook campaign is distributing phishing emails with ZIP attachments containing obfuscated VBS scripts to trigger infections, while operators of the Contagious I ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/2987_Shutterstock_2053035026_2.jpg)
Even when you think the RATs are gone, they somehow find their way back. The notorious DarkComet RAT, long discontinued by its creator, has resurfaced through a new malware campaign that hides behind fake Bitcoin tools to infect ...
Read More
/https://cyware-ent.s3.amazonaws.com/image_bank/7227_shutterstock_2485319519.jpg)
A surge of malicious activity has been observed across the cyber landscape. Maverick malware is targeting Brazil’s largest banks, hijacking browser sessions and propagating through WhatsApp Web. Meanwhile, researchers have uncov ...
Read More
Get the Daily Cybersecurity Roundup delivered to your email!
Recent Blogs
Daily Threat Briefing
