In this attack campaign, the adversary demonstrates persistence in trying to gain access to victim environments and performs constant,...

Symantec, by Broadcom Software, has discovered a previously undocumented dropper that is being used to install a new backdoor and other...

Cobalt Strike is a clear example of the type of evasive malware that has been a thorn in the side of detection engines for many years. It...

LockBit 3.0 attacks and leaks reveal a number of similarities between the latest generation of the ransomware and the BlackMatter...

A report has been published by cybersecurity firm, WithSecure Intelligence, on an operation that targets individuals and businesses that...

Cybereason’s global security team is investigating a potentially widespread ransomware campaign run by the Black Basta ransomware group,...

In early November 2022, Qianxin Threat Intelligence Center detected an incident with malicious samples from unknown families. The...

This multi-stage stealer exhibits interesting hiding capabilities, concealed as small PowerShell scripts on a single line in the middle...

Nighthawk is an advanced C2 framework intended for red team operations through commercial licensing. Proofpoint researchers observed...

Global eyes are soon to be turned to the first global football tournament to be held in the Arab world kicking off on November 20, but...

An investigation by security firm SEKOIA.IO into the activity of Aurora botnets has found that the malware is being used by a growing...

Trendmicro has been monitoring a wave of spear-phishing attacks targeting the government, academic, foundations, and research sectors...

Ransomware is one of the most critical cybersecurity problems on the internet and possibly the most powerful form of cybercrime plaguing...

RedLine is an information stealer which operates on a MaaS (malware-as-a-service) model. This stealer is available on underground forums,...

Royal Ransomware group started its malicious activities since January, with other ransomware payloads. They started their malicious...

After FortiGuard Labs reported on RapperBot in our previous article titled So RapperBot, What Ya Bruting For? in August 2022, there was a...

In this entry, we reveal two campaigns by Earth Longzhi from 2020 to 2022 and introduce some of the group’s arsenal in these campaigns....

The Microsoft Threat Intelligence Center (MSTIC) has identified evidence of a novel ransomware campaign targeting organizations in the...

Symantec researchers have discovered a novel technique of reading commands from IIS logs to install backdoors and other tools in a...

Microsoft has discovered recent activity indicating that the Raspberry Robin worm is part of a complex and interconnected malware...