Malwarebytes

JULY 28, 2021

All of a sudden we have infectious email attachments, and compromised third-party sites serving up malware. 2012 London. Articles warning of dangers mainly focused on search engine poisoning (still a threat back in 2012), fake sites, streaming , and once again Twitter makes an appearance as “one to watch.”

Scams 138

Scams Hacking Malware Mobile 138

Security Affairs

JANUARY 3, 2024

They were used to access the internal workplace systems for BMW dealers and could have been useful to attackers for spear-phishing campaigns or malware distribution. This exploit could also be used for mass phishing campaigns, targeting customers,” our researchers said.

Phishing 113

Phishing Manufacturing Firewall Cybercrime 113

SecureList

MARCH 1, 2021

The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities. Interestingly enough, the share of adware attacks increased in relation to mobile malware in general. They typically work with malware developers to achieve this.

Mobile 138

Mobile Malware Adware Banking 138

SC Magazine

MAY 5, 2021

A pair of related phishing campaigns this year took the unusual step of intentionally avoiding malicious links or attachments in its emails – a sign that threat actors may recognize the need to come up with new tactics. Here, workers prepare a presentation the day before the CeBIT 2012 technology trade fair.

Phishing 65

Phishing Scams Malware Social Engineering 65

Security Affairs

APRIL 6, 2023

Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. The attack chain associated with ARCHIPELAGO starts with phishing emails that embed malicious links.

Phishing 79

Phishing Media Passwords Malware 79

Krebs on Security

APRIL 7, 2022

The DOJ said it did not seek to disinfect compromised devices; instead, it obtained court orders to remove the Cyclops Blink malware from its “command and control” servers — the hidden machines that allowed the attackers to orchestrate the activities of the botnet. energy facilities. ” HYDRA. . ” HYDRA. .

Marketing 256

Marketing Energy and Utilities Malware Ransomware 256

CyberSecurity Insiders

JULY 21, 2021

According to a press release from Associated Press, the Saudi Arabia-based petroleum producer was hit by a cyber attack in 2012 where the servers of the company were targeted by a malware named ‘Shamoon’ via a ‘spear phishing’ attack deceptively launched by Iran.

Ransomware 139

Ransomware Encryption Cryptocurrency Cyber Attacks 139

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012.

Identity Theft 104

Identity Theft Cybercrime Advertising Hacking 104

Security Affairs

MARCH 27, 2023

Earth Preta, also known as “RedDelta” or “Bronze President,” has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. The report details the execution flow for each of the above malware.

Malware 82

Malware Phishing Passwords Government 82

Vipre

MAY 5, 2021

Yes, endpoint security is a vital element in your malware defense, but it cannot do the job alone. For instance, failing to educate users on the dangers of phishing amounts to business malpractice. Your answers should make it obvious in which areas of security you need to invest: Are you training users on the dangers of phishing?

Ransomware 122

Ransomware Backups Phishing Education 122

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. The conspirators designed the Triton malware to prevent the refinery’s safety systems from functioning (i.e., ” continues the DoJ.

Government 90

Government Energy and Utilities Malware Hacking 90

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking 75

Hacking Cybercrime Data breaches Advertising 75

CyberSecurity Insiders

FEBRUARY 13, 2022

A report published by Sentinel One states that a hacking group named “Modified Elephant” was seen carrying out such criminal activities since 2012 and has started the game of planting criminal evidence on devices of innocent online users. Then how to keep such cyber crimes at bay?

Surveillance 94

Surveillance Passwords Malware Hacking 94

Security Affairs

MAY 31, 2022

SideWinder has been active since at least 2012, the group main targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. The group stands out for the high frequency and persistence of its attacks, researchers believe that the APT group has carried out over 1,000 attacks since April 2020. ” states Kaspersky.

Encryption 95

Encryption Malware Phishing Hacking 95

Security Affairs

MARCH 25, 2022

Scarab APT was first spotted in 2015, but experts believe it has been active since at least 2012, conducting surgical attacks against a small number of individuals across the world, including Russia and the United States. The attacker spread their malware through phishing messages using weaponized documents that deploy the HeaderTip malware.

Malware 83

Malware Phishing Hacking Information Security 83

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e.

Healthcare 113

Healthcare Ransomware Phishing Government 113

CyberSecurity Insiders

OCTOBER 24, 2021

times the amount observed during the 2012 London Olympics. According to a finding discovered by NTT Corporation that was assigned operating the digital services across the event, state funded hackers tried their best to disrupt the event that counted over 2.5

Cyber Attacks 141

Cyber Attacks Cyber Risk Backups Education 141

Security Affairs

DECEMBER 11, 2020

Facebook has suspended some accounts linked to APT32 that were involved in cyber espionage campaigns to spread malware. Facebook has suspended several accounts linked to the APT32 cyberespionage that abused the platform to spread malware. APT32 also carried out watering hole attacks through compromised websites or their own sites.

Retail 124

Retail Malware Mobile Accountability 124

Security Affairs

AUGUST 26, 2020

A hack-for-hire group, tracked as DeathStalker, has been targeting organizations in the financial sector since 2012 Kaspersky researchers say. DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012. ” continues the report.

Malware 71

Malware Hacking Advertising Cybercrime 71

Security Affairs

MAY 2, 2023

North Korea-linked ScarCruft APT group started using oversized LNK files to deliver the RokRAT malware starting in early July 2022. The end goal of the nation-state actors is to deploy the ROKRAT on the victims’ systems by using spear-phishing emails. RokRat is believed to be the handiwork of the ScarCruft group.

Malware 81

Malware Education Media Phishing 81

Security Affairs

FEBRUARY 28, 2022

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor Sophos linked Entropy ransomware to Dridex malware. Are both linked to Evil Corp? worth of NFTs from tens of OpenSea users Trickbot operation is now controlled by Conti ransomware.

Ransomware 52

Ransomware Malware Encryption Phishing 52

Security Affairs

MAY 9, 2022

In February 2022, Cisco Talos researchers started observing China-linked cyberespionage group Mustang Panda conducting phishing attacks against European entities, including Russian organizations. Upon opening the reports, the infection process starts leading to the deployment of malware on the victim’s system.

Government 75

Government Malware Phishing Hacking 75

Security Affairs

OCTOBER 7, 2020

The threat actor that employed the Kraken technique, likely an APT group, launched a phishing attack that used messages with a.ZIP file attachment. At the time of the analysis, the hard-coded target URL of the malware was not reachable making it impossible to attribute the Kraken technique to a specific threat actor.

Advertising 126

Advertising Hacking Manufacturing Phishing 126

Security Affairs

AUGUST 23, 2019

Malware researchers at Trend Micro discovered a new variant of the Asruex Trojan that exploits old Microsoft Office and Adobe vulnerabilities to infect Windows and Mac systems. CVE-2012-0158 is a critical remote code execution (RCE) vulnerability that affected Microsoft Office. . SecurityAffairs – Asruex Trojan, malware).

Malware 82

Malware Spyware Advertising Encryption 82

Security Affairs

DECEMBER 5, 2020

DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012. Once executed the command, the malware the malicious code sends back command execution results. “On

DNS 80

DNS Phishing Antivirus Encryption 80

Security Affairs

JUNE 18, 2021

MoleRATs is an Arabic-speaking, politically motivated group of hackers that has been active since 2012, in 2018 monitoring the operation of the group, Kaspersky identified different techniques utilized by very similar attackers in the MENA region. Proofpoint researchers assess LastConn is very actively developed and maintained malware.

Government 83

Government Telecommunications Malware Passwords 83

SecureList

OCTOBER 17, 2023

The initial attack vector was a phishing email disguised as an email from a government entity or service. The final payload was a loaded malware implant, the Remcos RAT – the fourth type of remote administration tool adopted by this threat actor within a few months of operation.

Government 109

Government Malware VPN Manufacturing 109

Security Affairs

FEBRUARY 24, 2021

“Amnesty Tech’s Security Lab found technical evidence in phishing emails sent to two prominent Vietnamese human rights defenders, one of whom lives in Germany, and a Vietnamese NGO based in the Philippines, showing that Ocean Lotus is responsible for the attacks between 2018 and November 2020.”

Spyware 87

Spyware Surveillance Government Phishing 87

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. Balaban This ransomware was doing the rounds over spam generated by the Gameover ZeuS botnet, which had been originally launched in 2011 as a toolkit for stealing victim’s banking credentials and was repurposed for malware propagation.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

JANUARY 23, 2022

MoleRATs is an Arabic-speaking, politically motivated group of hackers that has been active since 2012, . ’ The.NET-based malware masquerades itself as a WinRAR application by using the icon and other resources and is obfuscated using the ConfuserEx packer. ” reads the analysis published by Zscaler.

Manufacturing 116

Manufacturing Banking Phishing Malware 116

Malwarebytes

JUNE 1, 2021

The Kimsuky APT—also known as Thallium, Black Banshee, and Velvet Chollima—is a North Korean threat actor that has been active since 2012. On December 2020, KISA (Korean Internet & Security Agency) provided a detailed analysis about the phishing infrastructure and TTPs used by Kimsuky to target South Korea. Phishing Infrastructure.

Government 145

Government Phishing Encryption Media 145

eSecurity Planet

OCTOBER 8, 2021

CVE-2012-1723. The service leverages the conclusions of Qualys’ research to provide users with a single consolidated view of their ransomware risks, along with an automated remediation plan – though Athalye noted that they can’t cover every risk, such as phishing and zero-day flaws. Patch Available from Vendor. March 2013.

Risk 103

Risk Ransomware Backups Software 103

eSecurity Planet

NOVEMBER 10, 2022

. “It has low complexity, uses the network vector, and requires no privilege to use, but it needs user interaction, such as using a phishing email to convince the victim to visit a malicious server share or website,” Walters said. “With a long list of Windows 10 and 11 impacted (in addition to Win 8.0,

Phishing 107

Phishing Malware Cybersecurity Network Security 107

SecureList

NOVEMBER 1, 2022

Since the malware in this incident was compiled on April 15, 2021, and compilation dates are the same for all known samples, this incident is likely to be the first involving Maui ransomware. This report included technical details of malware used in the campaign, such as Ecipekac, SodaMaster, P8RAT, FYAnti and QuasarRAT.

Malware 142

Malware Ransomware Spyware Encryption 142

Security Boulevard

MARCH 30, 2022

Three Russian computer hackers, who were officers in Center 16, carried out energy sector attacks between 2012 and 2014 in phase one of the campaign. The hackers then hid the malware inside legitimate software updates. Supply chain attacks have been around for years as the DOJ’s August 26, 2021 indictment shows. During the Dragonfly 2.0

Software 52

Software Government InfoSec Malware 52

Security Affairs

AUGUST 21, 2019

The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. Unlike other China-based actors, the group used custom malware in cyber espionage operations, experts observed 46 different malware families and tools in APT41 campaigns.

Malware 83

Malware Telecommunications Advertising Healthcare 83

SiteLock

AUGUST 27, 2021

Perhaps the single biggest and most dangerous change in threats came in the world of malware delivery. For years, hackers and malware authors had used the same ways to deliver and spread their malware. So hackers had to choose a new way to deliver and spread malware. Email and spam were by far the most popular.

Cybercrime 87

Cybercrime Small Business Antivirus Malware 87