SecureList

NOVEMBER 28, 2024

Chinese-speaking activity In July 2021, we detected a campaign called ExCone targeting government entities in Russia. Europe Awaken Likho is an APT campaign, active since at least July 2021, primarily targeting government organizations and contractors. Our report provided an initial analysis of the Trojanized USB management program.

Malware 118

Malware Government Software Spyware 118

SecureWorld News

JULY 11, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) issued a warning in April that the group was targeting cryptocurrency and blockchain companies and that it was using social engineering schemes to gain access to the victim's network. This was discontinued in December 2021, but the allowlist access was not revoked.

Social Engineering 98

Social Engineering Hacking Cryptocurrency Cybercrime 98

Security Affairs

DECEMBER 12, 2024

The Russia-linked APT Gamaredon used two new Android spyware tools calledBoneSpyandPlainGnome against former Soviet states. The cyberespionage group is behind a long series of spear-phishing attacks targeting Ukrainian entities, and organizations related to Ukrainian affairs, since October 2021. ” concludes the report.

Mobile 98

Mobile Malware Surveillance Social Engineering 98

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 98

Social Engineering Data breaches Ransomware Cybercrime 98

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. In addition, the likelihood of the data being used for phishing and social engineering increases. . Kaspersky detects an average of 400,000 malicious files every day.

Media 139

Media Social Engineering Ransomware Hacking 139

SecureList

MAY 27, 2022

The attackers study their victims carefully and use the information they find to frame social engineering attacks. In the second half of 2021, the most affected countries were France, Japan, India, China, Germany and South Korea. When opened, this document eventually downloads a backdoor. Other malware.

Phishing 133

Phishing Spyware Firmware Malware 133

Security Affairs

JULY 4, 2023

Neo_Net’s eCrime campaign was reportedly targeting clients of banks globally, with a focus on Spanish and Chilean banks, from June 2021 to April 2023. Furthermore, due to the simplicity of SMS spyware, it can be difficult to detect, as it only requires permission to send and view SMS messages.”

Banking 98

Banking Phishing Social Engineering Authentication 98

SecureList

NOVEMBER 1, 2022

We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. At the beginning of 2021, Kaspersky published a private report about the A41APT campaign. Russian-speaking activity.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

OCTOBER 4, 2022

More importantly, one of the libraries bundled with the malicious Tor Browser is infected with spyware that collects various personal data and sends it to a command and control server. The spyware also provides the functionality to execute shell commands on the victim machine, giving the attacker control over it. 2021-Sep-25 21:56:47.

Encryption 145

Encryption Spyware Malware Software 145

Security Affairs

MARCH 27, 2023

Such was related to a worldwide malware operation known as NullMixer, a controversial and widespread malware delivery maneuver based on SEO poisoning and social engineering technique to lure tech-savvy users, including IT personnel.

Malware 98

Malware Social Engineering Encryption Marketing 98

Herjavec Group

AUGUST 26, 2021

1970-1995 — Kevin Mitnick — Beginning in 1970, Kevin Mitnick penetrates some of the most highly-guarded networks in the world, including Nokia and Motorola, using elaborate social engineering schemes, tricking insiders into handing over codes and passwords, and using the codes to access internal computer systems. east coast.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Malwarebytes

FEBRUARY 12, 2021

Threat actors involved in tech support scams have been running a browser locker campaign from November 2020 until February 2021 on the world’s largest adult platforms including PornHub. This well-known scheme attempts to scare victims into calling so-called technicians for assistance but in fact defrauds them for hundreds of dollars.

Scams 100

Scams Advertising Spyware Mobile 100

SecureList

NOVEMBER 22, 2022

Our telemetry shows an exponential growth in infostealers in 2021. In the scramble for cryptocurrency investment opportunities, we believe that cybercriminals will take advantage of fabricating and selling rogue devices with backdoors, followed by social engineering campaigns and other methods to steal victims’ financial assets.

Cryptocurrency 106

Cryptocurrency Mobile Ransomware Banking 106

Security Boulevard

DECEMBER 17, 2021

Researchers have reverse engineered NSO group’s recent zero-click iPhone exploit. And it’s a doozy. The post NSO Zero-Click Exploit: Turing-Complete CPU in Image File appeared first on Security Boulevard.

Engineering 141

Engineering Social Engineering Spyware Security Awareness 141

ForAllSecure

APRIL 26, 2023

Common Types of Cyber Attacks Common techniques that criminal hackers use to penetrate systems include social engineering, password attacks, malware, and exploitation of software vulnerabilities. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information.”

Social Engineering 40

Social Engineering Passwords Engineering Software 40

SecureList

NOVEMBER 14, 2023

The threat actor used news about the Russo-Ukrainian conflict to trick targets into opening harmful emails that exploited the vulnerabilities (CVE-2020-35730, CVE-2020-12641 and CVE-2021-44026). This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware.

Hacking 141

Hacking Energy and Utilities Media Malware 141

SecureList

NOVEMBER 18, 2022

The group delivers its malware using social engineering. Cybercriminals make extensive use of social engineering tricks to entice potential victims into installing malware: the promise of an Android version of a game that’s not on Google Play ; the chance to play games for free ; access to game cheats; etc.

Malware 122

Malware Computers and Electronics Adware Cryptocurrency 122

SecureList

JULY 27, 2023

Following this, we released the first of a series of additional reports describing the final payload in the infection chain: a highly sophisticated spyware implant that we dubbed “TriangleDB” Operating in memory, this implant periodically communicates with the C2 (command and control) infrastructure to receive commands.

Malware 98

Malware Government Phishing Social Engineering 98

Digital Shadows

NOVEMBER 10, 2022

Impersonating domains are a thorny problem for most brands, as our 2021 research proved, when we detected an average of 1,100 impersonating domains and subdomains per year per Digital Shadows client. 100% NOT a pyramid scheme Social media pages are not the only concern when it comes to brand and logo theft.

Cyber threats 52

Cyber threats Media Social Engineering Mobile 52

SecureList

OCTOBER 26, 2021

This is our latest installment, focusing on activities that we observed during Q3 2021. This activity seems to have continued and stretched into 2021, when we spotted a set of recent attacks using the same techniques and malware to gain a foothold in diplomatic organizations based in Central Asia. It was fixed as CVE-2021-26605.

Malware 145

Malware Government Surveillance Spyware 145

SecureList

AUGUST 5, 2021

In Q2 2021, corporate accounts continued to be one of the most tempting targets for cybercriminals. In Q2 2021, scammers continued to exploit the theme of pandemic-related compensation. In Q2 2021, cybercriminals diversified their easy-money schemes. Share of spam in global mail traffic, Q1 and Q2 2021 ( download ).

Phishing 134

Phishing Banking Scams Computers and Electronics 134

CyberSecurity Insiders

JANUARY 31, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. It is not unusual to have your system or network infected with malware, such as spyware, that often lingers secretly with no apparent symptoms. Don’t worry though. Common Types of Malware. Ransomware.

Malware 107

Malware Computers and Electronics Adware Spyware 107

SecureList

NOVEMBER 17, 2021

Let’s start by looking at the predictions we made for 2021. The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. A very interesting campaign orchestrated by APT31 surfaced in 2021. But this prediction also came true another way.

Mobile 145

Mobile Surveillance Ransomware Government 145

Webroot

MAY 12, 2021

Sites streaming pirated sports, specifically the English football “free-to-view” sites, were the subject of an April 2021 Webroot study on the week of the Carabao Cup final game between Manchester City and Tottenham Hotspur. Webroot’s 2021 Threat Report. Malvertising/Dishonest links. Types of threats we saw on pirated streaming sites.

Scams 126

Scams Mobile Advertising Social Engineering 126

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. Types of spyware are often classified based on what information they’re gathering. Need More Intel on Rootkits?

Malware 75

Malware Adware Spyware Antivirus 75

SecureList

NOVEMBER 10, 2021

In 2021, demand for video streaming has remained strong, and the global video streaming market is still growing, albeit slower than in 2020, and is expected to continue growing for the next few years. Number of users affected by malware and unwanted applications, by platform, January 1, 2020 through June 30, 2021 ( download ).

Phishing 126

Phishing Accountability Malware Adware 126

SecureList

FEBRUARY 16, 2023

Attackers actively used social engineering techniques in their emails, adding signatures with logos and information from specific organizations, creating a context appropriate to the company’s profile, and applying business language. increase on 2021. Third place is still held by the United States (10.71%). respectively.

Phishing 117

Phishing Scams Accountability Energy and Utilities 117

SecureList

FEBRUARY 9, 2022

In 2021: 56% of e-mails were spam. The subject of investments gained significant relevance in 2021, with banks and other organizations actively promoting investment and brokerage accounts. Online streaming of hyped film premieres and highly anticipated sports events was repeatedly used to lure users in 2021. Figures of the year.

Phishing 105

Phishing Scams Accountability Banking 105

ForAllSecure

SEPTEMBER 21, 2021

Lodrina Cherne and Martijn Grooten join the The Hacker Mind podcast to discuss their Black Hat USA 2021 presentation. In early September 2021. Some of those who bought the spyware were allegedly able to see live locations of the devices, view the targets emails, photos, web browsing history, text messages, video calls, etc.

Technology 52

Technology Software Surveillance Media 52