Cracked software is the bait but ViperSoftX is what’s waiting underneath. Arabic-speaking attackers are using torrents and pirated tools to deliver the malware to Korean users. ToddyCat has found a way in through the front door. The Chinese-linked group has been exploiting a flaw in ESET’s security software to drop a previously unseen malware strain. A flash drive was all it took. Gamaredon used an infected removable device to target a foreign military mission in Ukraine. Read on for more.
01
Arabic-speaking attackers have been distributing the ViperSoftX malware, which targets Korean victims. The malware, furthermore, downloads Quasar RAT and other payloads.
02
A Chinese-affiliated threat actor, ToddyCat, has been exploiting a security flaw in ESET's security software to deliver a previously undocumented malware, TCESB.
03
A malicious campaign involved uploading a package to the npm manager, which, when executed, injected malicious code into legitimate crypto wallet software, Atomic Wallet and Exodus, to redirect cryptocurrency funds to the attacker's wallet.
04
The "Pick Your Poison" phishing campaign uses a hybrid attack vector, leveraging the legitimate file-sharing platform files[.]fm, to deliver either a credential phishing attack or malware infection to victims.
05
The Russia-linked threat actor, Gamaredon, targeted a foreign military mission in Ukraine with an updated version of the GammaSteel malware, initiating the attack via an infected removable drive.
06
A targeted campaign exploited SSRF vulnerabilities in websites hosted on AWS EC2 instances to extract sensitive data, including IAM credentials, between March 13 and 25.
07
The CISA has warned about two actively exploited vulnerabilities in the Linux kernel, identified as CVE-2024-53197 and CVE-2024-53150, both located in the USB-audio driver.
08
In March, the most common threat among phishing email attachments was phishing (59%), followed by trojan (30%) and downloader (8%), revealed ASEC.
09
Dell issued a security advisory for six vulnerabilities in its PowerScale OneFS operating system, which could be exploited by malicious users to compromise affected systems.
10
Threat actors are using fraudulent emails disguised as genuine gift cards from trusted sources, like Amazon, to manipulate emotions and trick victims into providing sensitive information.
