Researchers exposed a new evolution in banking malware with AppLite Banker, a variant of the Antidot trojan. This sophisticated malware targets over 170 banking, cryptocurrency, and financial apps, using highly targeted phishing campaigns to exploit user trust and financial data. In Southern Europe, Chinese hackers launched Operation Digital Eye, leveraging Visual Studio Code Remote Tunnels to establish persistent backdoors in IT service provider networks. In other news, Symantec revealed ongoing Chinese cyberattacks against Southeast Asian governments, aviation sectors, and telecom giants since late 2023. Read on for more.
01
The zLabs team discovered a sophisticated phishing campaign distributing a new variant of the Antidot banking trojan, known as AppLite Banker. The malware targets 95 banking apps, 62 cryptocurrency apps, and 13 additional financial apps.
02
Chinese hackers targeted IT service providers in Southern Europe, in Operation Digital Eye, by abusing Visual Studio Code Remote Tunnels to gain persistent remote access to compromised systems.
03
A large-scale fraud campaign by Smishing Triad has been targeting consumers in the UAE, where scammers impersonate law enforcement officers to extort money from victims.
04
A new series of cyberattacks on Chinese scientific organizations have been linked to the Patchwork APT group. This latest attack targets intellectual property with the BadNews backdoor.
05
Symantec warned of Chinese threat actors targeting high-profile organizations in Southeast Asia since October 2023, including government ministries, aviation, and telecommunications. The actors used PlugX RAT and a Go-based proxy tool Rakshasa.
06
Global law enforcement agencies have seized 27 popular DDoS attack platforms and arrested three administrators in a coordinated effort known as Operation PowerOFF.
07
Lookout spotted a surveillance tool, EagleMsgSpy, used by law enforcement in China to collect extensive data from mobile devices. This tool has been operational since at least 2017.
08
Ransomware attacks on utilities have surged by 42% in the past year, with a focus on compromising both IT and operational technology systems, noted a new report by ReliaQuest.
09
As part of its December 2024 Patch Tuesday, Microsoft issued fixes for 71 vulnerabilities, including an actively exploited critical zero-day flaw in the Windows Common Log File System (CLFS), identified as CVE-2024-49138.
10
Non-human identity security provider Astrix Security raised $45 million in Series B funding led by Menlo Ventures with the participation of Workday Ventures, as well as existing investors, Bessemer Venture Partners, CRV, and F2 Venture Capital.
