Iran-Linked MuddyWater Poses as Ransomware Gang to Mask Cyber Espionage
An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware
SocGholish malware has been removed from 15,000 sites associated with Evil Corp hackers
Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns
High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files
A new ransomware-as-a-service operation dubbed “Vect” features custom malware
Microsoft has revoked over 200 fraudulent code-signing certificates used in a ransomware campaign involving fake Teams installers by threat group Vanilla Tempest
A new Europol-led operation has dismantled infrastructure for key initial access malware used to launch ransomware attacks
Researchers at Check Point said FunkSec operators appear to use AI for malware development
The US government has sanctioned Sichuan Silence and one of its employees for the mass compromise of firewalls which led to the deployment of malware and ransomware
Infostealer malware and digital identity exposure behind rise in ransomware, researchers find
The threat actor who claimed the recent Disney hack previously targeted AI-centric games and applications with commodity malware and ransomware
The operation targeted several significant malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader and Bumblebee
Global collaborative effort focused on combating the global rise of phishing, malware and ransomware
Nitrogen serves as initial-access malware, using obfuscated Python libraries for stealth
Kaspersky found suspicious files in December 2022 which activated the komar65 library known as BUGHATCH
Malicious activity using a particular malware variant has been spotted since September 2022
The Veeamp malware was used by the Monti and Yanluowang ransomware groups in these attacks
Malware continues to infect QNAP devices
The malware can also check if specific products are installed, particularly security software
The malware was detected in campaigns targeting firms in the industrial and pharmaceutical space