Penetration Testing and Security Intelligence

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign

Penetration Testing

APRIL 12, 2025

AhnLab Security intelligence Center (ASEC) has revealed a cyberattack campaign where Arabic-speaking attackers are distributing ViperSoftX malware, targeting The post ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign appeared first on Daily CyberSecurity.

Malware

Malware Security Intelligence Cybersecurity Software

Exploited in the Wild: The Alarming Hitron DVR Vulnerabilities

Penetration Testing

JANUARY 30, 2024

In a concerning development in the realm of cybersecurity, the Akamai Security Intelligence Response Team (SIRT) has uncovered a series of critical vulnerabilities in various Hitron DVR models.

Penetration Testing

Penetration Testing Security Intelligence Cybersecurity

Redis Servers Exploited to Deploy Metasploit Meterpreter Backdoor

Penetration Testing

APRIL 10, 2024

Security experts at AhnLab Security Intelligence Center (ASEC) have sounded the alarm on a new wave of attacks targeting Redis servers.

Penetration Testing

Penetration Testing Security Intelligence Malware

Hackers Exploit Google Ads to Spread Malware Disguised as Popular Software

Penetration Testing

MARCH 31, 2024

A new report released by AhnLab Security Intelligence Center (ASEC) uncovers a disturbing tactic hackers are using to spread malware: they’re leveraging Google Ads tracking features to redirect unsuspecting users to malicious websites.

Penetration Testing

Penetration Testing Software Malware Security Intelligence

LockBit Ransomware: The Hidden Threat in Resume Word Files

Penetration Testing

JANUARY 18, 2024

The AhnLab Security Intelligence Center has uncovered that the LockBit ransomware is being spread through malicious Word files disguised as resumes.

Ransomware

Ransomware Penetration Testing Security Intelligence Malware

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

SecureWorld News

NOVEMBER 18, 2024

To mitigate these risks, water utilities should: Prioritize cybersecurity: Implement robust cybersecurity practices, including regular vulnerability assessments, penetration testing, and employee training. Invest in security technology: Utilize advanced security technologies to protect critical infrastructure and data.

Cybersecurity

Cybersecurity Risk Penetration Testing Technology

TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers

Penetration Testing

MAY 1, 2024

The AhnLab Security Intelligence Center (ASEC)... The post TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers appeared first on Penetration Testing.

Penetration Testing

Penetration Testing Ransomware Security Intelligence Malware

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

An individual thought to be involved has earned accolades from the likes of Apple , Dell , and Microsoft for helping to find and fix security vulnerabilities in their products. In 2018, security intelligence firm HYAS discovered a malware network communicating with systems inside of a French national power company. ”

DNS

DNS Penetration Testing Malware Hacking

Hackers Weaponize Popular Software Framework for Stealthy Data Theft

Penetration Testing

APRIL 23, 2024

In a disturbing new development, cybersecurity experts at AhnLab Security Intelligence Center (ASEC) have revealed a growing trend of infostealer malware abusing the Electron framework.

Software

Software Penetration Testing Security Intelligence Malware

Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604)

Penetration Testing

DECEMBER 8, 2024

The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, have begun deploying Mauri ransomware in their attacks....

Ransomware

Ransomware Security Intelligence Cybersecurity Malware

New Trigona Ransomware Threat Actor Uses Mimic Ransomware and BCP Utility in Attacks

Penetration Testing

JANUARY 29, 2024

AhnLab Security Intelligence Center (ASEC) has recently uncovered a concerning development in ransomware attacks. This discovery sheds light... The post New Trigona Ransomware Threat Actor Uses Mimic Ransomware and BCP Utility in Attacks appeared first on Penetration Testing.

Ransomware

Ransomware Penetration Testing Security Intelligence Malware

Attackers Exploit Construction Site Trust, Deliver TrollAgent Malware

Penetration Testing

FEBRUARY 22, 2024

Security experts at the AhnLab Security Intelligence Center (ASEC) have recently uncovered a malware distribution campaign targeting a Korean construction-related association website.

Malware

Malware Penetration Testing Security Intelligence Software

Backdoor Breaches: The Rise of Stealthy Linux System Attacks

Penetration Testing

FEBRUARY 2, 2024

Recently, a detailed report from AhnLab Security Intelligence Center has shed light on the sophisticated strategies employed... The post Backdoor Breaches: The Rise of Stealthy Linux System Attacks appeared first on Penetration Testing.

Penetration Testing

Penetration Testing Security Intelligence Internet Internet

Crafty Infostealer Campaign Leverages Fake Adobe Reader Installer, Advanced Tricks to Evade Detection

Penetration Testing

MARCH 11, 2024

Security experts from AhnLab SEcurity intelligence Center (ASEC) have uncovered a sophisticated malware campaign where attackers are tricking users into downloading a dangerous infostealer disguised as a legitimate Adobe Reader installation file.

Penetration Testing

Penetration Testing Security Intelligence Malware

WogRAT Backdoor: The Stealthy Malware Lurking in Online Notepads

Penetration Testing

MARCH 4, 2024

Discovered by the AhnLab Security Intelligence Center (ASEC), WogRAT stands out due to its ability to target both... The post WogRAT Backdoor: The Stealthy Malware Lurking in Online Notepads appeared first on Penetration Testing.

Malware

Malware Penetration Testing Security Intelligence

Sophisticated SmokeLoader Campaign Targets Ukrainian Sectors

Penetration Testing

JANUARY 21, 2024

In a recent investigation, researchers at AhnLab Security Intelligence Center (ASEC) have unearthed a sophisticated cyber-espionage campaign targeting various sectors within Ukraine, including the government, public institutions, and key industries.

Penetration Testing

Penetration Testing Security Intelligence Government Malware

China-based cyberespionage actor seen targeting South America

CSO Magazine

FEBRUARY 15, 2023

China-based cyberespionage actor DEV-0147 has been observed compromising diplomatic targets in South America, according to Microsoft’s Security Intelligence team. To read this article in full, please click here

Penetration Testing

Penetration Testing Security Intelligence

Revenge RAT: Unveiling a Tool-Abusing, Fileless Attack

Penetration Testing

FEBRUARY 14, 2024

AhnLab Security Intelligence Center (ASEC) recently sounded the alarm over a cunning Revenge RAT malware campaign.

Penetration Testing

Penetration Testing Security Intelligence Malware

ViperSoftX Leverages Deep Learning with Tesseract to Exfiltrate Sensitive Information

Penetration Testing

MAY 19, 2024

AhnLab Security Intelligence Center (ASEC) has uncovered a new tactic employed by the notorious ViperSoftX malware.

Penetration Testing

Penetration Testing Security Intelligence Engineering Malware

Aquabotv3: The Mirai-Based Botnet Exploiting CVE-2024-41710 for DDoS Attacks

Penetration Testing

JANUARY 30, 2025

The Akamai Security Intelligence and Response Team (SIRT) has identified Aquabotv3, a new and more sophisticated variant of The post Aquabotv3: The Mirai-Based Botnet Exploiting CVE-2024-41710 for DDoS Attacks appeared first on Cybersecurity News.

DDOS

DDOS Security Intelligence Cybersecurity Malware

400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks

Penetration Testing

JANUARY 21, 2025

A recent report from the AhnLab Security Intelligence Center (ASEC) detailed the spread of DigitalPulse proxyware via ad The post 400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks appeared first on Cybersecurity News.

Security Intelligence

Security Intelligence Cybersecurity Malware

LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users

Penetration Testing

FEBRUARY 22, 2025

A recent investigation by the AhnLab Security Intelligence Center (ASEC) has uncovered a malvertising campaign that distributes LummaC2 The post LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users appeared first on Cybersecurity News.

Malware

Malware Security Intelligence Cybersecurity Engineering

Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim

Penetration Testing

SEPTEMBER 6, 2024

AhnLab Security Intelligence Center (ASEC) has uncovered a new phishing campaign targeting Netflix users, where cybercriminals are impersonating the popular streaming service to steal sensitive information.

Scams

Scams Phishing Security Intelligence Cybersecurity

Cloud-based security: SECaaS

eSecurity Planet

DECEMBER 30, 2020

To ease these burdens, SECaaS and SOCaaS vendors have emerged as cloud-based security as a service that can collect, analyze, and correlate your information from diverse systems and applications — turning former headaches into actionable information security intelligence. Security as a Service (SECaaS) .

Penetration Testing

Penetration Testing Cybersecurity Antivirus Network Security

JPHP Interpreter Used to Distribute Downloader Malware

Penetration Testing

MARCH 19, 2025

AhnLab Security intelligence Center (ASEC) has recently uncovered a malware campaign utilizing the JPHP interpreter to distribute downloader The post JPHP Interpreter Used to Distribute Downloader Malware appeared first on Cybersecurity News.

Malware

Malware Security Intelligence Cybersecurity

Beware the Bait: BeaverTail and Tropidoor Malware Lurk in Recruitment Emails

Penetration Testing

APRIL 3, 2025

A recent analysis by the AhnLab Security Intelligence Center (ASEC) has uncovered a particularly insidious campaign involving the The post Beware the Bait: BeaverTail and Tropidoor Malware Lurk in Recruitment Emails appeared first on Daily CyberSecurity.

Malware

Malware Security Intelligence Cybersecurity

LummaC2 Infostealer Malware Spreads via Crack Programs and Phishing

Penetration Testing

JANUARY 13, 2025

Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have unveiled a sophisticated distribution tactic for the LummaC2 malware. The post LummaC2 Infostealer Malware Spreads via Crack Programs and Phishing appeared first on Cybersecurity News.

Phishing

Phishing Malware Security Intelligence Cybersecurity

Cybercriminals Exploit Legitimate Windows Tool for Cryptojacking

Penetration Testing

SEPTEMBER 10, 2024

The AhnLab Security Intelligence Center (ASEC) has uncovered a concerning trend in cybercrime involving the misuse of Binary Managed Object Files (BMOFs) for the distribution of XMRig, a notorious cryptocurrency... The post Cybercriminals Exploit Legitimate Windows Tool for Cryptojacking appeared first on Cybersecurity News.

Cryptocurrency

Cryptocurrency Cybercrime Security Intelligence Cybersecurity

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives

Penetration Testing

FEBRUARY 12, 2025

A new report from AhnLab Security Intelligence Center (ASEC) reveals a concerning trend: the distribution of cryptocurrency-mining malware The post Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives appeared first on Cybersecurity News.

Malware

Malware Cryptocurrency Security Intelligence Cybersecurity

Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras

Penetration Testing

AUGUST 28, 2024

Akamai’s Security Intelligence Response Team (SIRT) has discovered a widespread Mirai botnet campaign exploiting a recently disclosed zero-day vulnerability (CVE-2024-7029) in AVTECH IP cameras.

Security Intelligence

Security Intelligence Cybersecurity Malware

Hackers are actively exploiting PHP RCE vulnerability (CVE-2024-4577)

Penetration Testing

JULY 12, 2024

The Akamai Security Intelligence Response Team (SIRT) has observed a... The post Hackers are actively exploiting PHP RCE vulnerability (CVE-2024-4577) appeared first on Cybersecurity News.

Security Intelligence

Security Intelligence Cybersecurity Malware

InnoLoader Malware Evades Detection Posing as Cracked Software

Penetration Testing

JUNE 29, 2024

The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new breed of malware that disguises itself as cracked software and legitimate tools. This malware, dubbed “InnoLoader,” is far from ordinary.

Software

Software Malware Security Intelligence Cybersecurity

cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers

Penetration Testing

DECEMBER 19, 2024

AhnLab Security Intelligence Center (ASEC) has uncovered a new strain of DDoS malware called cShell, which specifically targets poorly managed Linux SSH servers. The malware exploits weak credentials to gain... The post cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers appeared first on Cybersecurity News.

DDOS

DDOS Security Intelligence Malware Cybersecurity

Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns

Penetration Testing

JULY 7, 2024

The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new backdoor malware called HappyDoor, linked to the Kimsuky group, a North Korean state-sponsored threat actor.

Cybersecurity

Cybersecurity Security Intelligence Malware

Cybercriminal on Cybercriminal Crime: Ransomware Hijacks CoinMiner

Penetration Testing

JUNE 5, 2024

In an unexpected twist of cybercrime, security researchers at AhnLab Security Intelligence Center (ASEC) have revealed a bizarre case of one criminal gang inadvertently aiding another.

Ransomware

Ransomware Cybercrime Security Intelligence Malware

ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection

Penetration Testing

JANUARY 21, 2025

The AhnLab Security Intelligence Center (ASEC) warns a novel malware distribution tactic involving the use of Microsoft Windows The post ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection appeared first on Cybersecurity News.

Malware

Malware Security Intelligence Cybersecurity

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

Security Affairs

NOVEMBER 8, 2019

Read our latest blog w/ assist from @GossiTheDog & @MalwareTechBlog [link] — Microsoft Security Intelligence (@MsftSecIntel) November 7, 2019. ” Microsoft confirmed that attackers are leveraging an exploit module released for the Metasploit penetration testing platform.

Malware

Malware Penetration Testing Advertising Spyware

New MS-SQL Server Attack Campaign Leverages GotoHTTP for Remote Access

Penetration Testing

OCTOBER 5, 2024

Experts from the AhnLab Security Intelligence Center (ASEC) have uncovered new attacks on MS-SQL servers, targeting unsecured accounts and weak passwords.

Security Intelligence

Security Intelligence Passwords Accountability Cybersecurity

Cybercriminals Exploit Ebooks to Spread AsyncRAT Malware

Penetration Testing

JULY 11, 2024

A recent report from AhnLab Security Intelligence Center (ASEC) reveals new cyberattacks utilizing a novel method to distribute the AsyncRAT remote access trojan (RAT).

Malware

Malware Security Intelligence Cybersecurity

Urgent Security Alert: HFS Servers Under Attack, Patch Now!

Penetration Testing

JULY 3, 2024

The AhnLab Security Intelligence Center (ASEC) has issued a critical warning for all users of HTTP File Server (HFS): a recently disclosed remote code execution vulnerability (CVE-2024-23692) is actively being exploited by malicious actors.... appeared first on Cybersecurity News.

Security Intelligence

Security Intelligence Cybersecurity Malware

Beware of “How to Fix” Button: New Phishing Emails Trick Users into Executing Malicious Commands

Penetration Testing

JUNE 5, 2024

AhnLab SEcurity Intelligence Center (ASEC) has recently identified a phishing campaign leveraging HTML files distributed via email to execute malicious commands on targeted systems.

Phishing

Phishing Security Intelligence Cybersecurity Malware

Best Managed Security Service Providers (MSSPs)

eSecurity Planet

JANUARY 27, 2022

AT&T’s 2018 acquisition of AlienVault significantly expanded its cybersecurity offerings, which now includes managed vulnerability services, strategy and roadmap planning, risk-based cyber posture assessments, penetration testing services, secure remote access, secure web gateway (SGW), network-based firewall, distributed denial of service (..)

Firewall

Firewall Threat Detection DDOS Marketing

From Taiwan to Korea: TIDRONE Threat Actor Targets ERP Software

Penetration Testing

DECEMBER 17, 2024

The AhnLab Security Intelligence Center (ASEC) has uncovered a series of cyberattacks on Korean companies orchestrated by the TIDRONE threat actor. Known for its focus on Taiwanese defense and drone... The post From Taiwan to Korea: TIDRONE Threat Actor Targets ERP Software appeared first on Cybersecurity News.

Software

Software Security Intelligence Cybersecurity Malware

DBatLoader: A Malware Distribution via CMD Files

Penetration Testing

JUNE 27, 2024

AhnLab Security Intelligence Center (ASEC) has issued a warning regarding the re-emergence of the DBatLoader malware, a notorious downloader known for its historical involvement in phishing campaigns.

Malware

Malware Security Intelligence Phishing Cybersecurity

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign

Exploited in the Wild: The Alarming Hitron DVR Vulnerabilities

Trending Sources

Redis Servers Exploited to Deploy Metasploit Meterpreter Backdoor

Hackers Exploit Google Ads to Spread Malware Disguised as Popular Software

LockBit Ransomware: The Hidden Threat in Resume Word Files

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers

French Firms Rocked by Kasbah Hacker?

Hackers Weaponize Popular Software Framework for Stealthy Data Theft

Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604)

New Trigona Ransomware Threat Actor Uses Mimic Ransomware and BCP Utility in Attacks

Attackers Exploit Construction Site Trust, Deliver TrollAgent Malware

Backdoor Breaches: The Rise of Stealthy Linux System Attacks

Crafty Infostealer Campaign Leverages Fake Adobe Reader Installer, Advanced Tricks to Evade Detection

WogRAT Backdoor: The Stealthy Malware Lurking in Online Notepads

Sophisticated SmokeLoader Campaign Targets Ukrainian Sectors

China-based cyberespionage actor seen targeting South America

Revenge RAT: Unveiling a Tool-Abusing, Fileless Attack

ViperSoftX Leverages Deep Learning with Tesseract to Exfiltrate Sensitive Information

Aquabotv3: The Mirai-Based Botnet Exploiting CVE-2024-41710 for DDoS Attacks

400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks

LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users

Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim

Cloud-based security: SECaaS

JPHP Interpreter Used to Distribute Downloader Malware

Beware the Bait: BeaverTail and Tropidoor Malware Lurk in Recruitment Emails

LummaC2 Infostealer Malware Spreads via Crack Programs and Phishing

Cybercriminals Exploit Legitimate Windows Tool for Cryptojacking

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives

Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras

Hackers are actively exploiting PHP RCE vulnerability (CVE-2024-4577)

InnoLoader Malware Evades Detection Posing as Cracked Software

cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers

Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns

Cybercriminal on Cybercriminal Crime: Ransomware Hijacks CoinMiner

ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

New MS-SQL Server Attack Campaign Leverages GotoHTTP for Remote Access

Cybercriminals Exploit Ebooks to Spread AsyncRAT Malware

Urgent Security Alert: HFS Servers Under Attack, Patch Now!

Beware of “How to Fix” Button: New Phishing Emails Trick Users into Executing Malicious Commands

Best Managed Security Service Providers (MSSPs)

From Taiwan to Korea: TIDRONE Threat Actor Targets ERP Software

DBatLoader: A Malware Distribution via CMD Files

Stay Connected