Security Affairs

OCTOBER 13, 2023

AvosLocker operators already advertised in the past a Linux variant, dubbed AvosLinux, of their malware claiming it was able to support Linux and ESXi servers. AvosLocker affiliates use legitimate software and open-source remote system administration tools to compromise the victims’ networks.

Ransomware 116

Ransomware System Administration Antivirus Malware 116

Security Affairs

AUGUST 4, 2020

China-linked hackers carried out cyber espionage campaigns targeting governments, corporations, and think tanks with TAIDOOR malware. “CISA encourages users and administrators to review Malware Analysis Report MAR-10292089-1.v1 See the latest malware analysis report on their TTPs at @CNMF_CyberAlert. v1 , U.S. .

Malware 106

Malware Government Passwords System Administration 106

Security Affairs

MAY 2, 2021

WeSteal is a Python-based malware that uses regular expressions to search for strings related to wallet addresses that victims have copied to their clipboard. “When pursuing cases against malware authors, prosecutors typically need to demonstrate the author’s intent for the malware. There is the name of the malware itself.

Cryptocurrency 106

Cryptocurrency Malware Advertising System Administration 106

Security Affairs

JUNE 14, 2022

Researchers from antivirus firm Avast spotted a new Linux rootkit, dubbed ‘Syslogk,’ that uses specially crafted “magic packets” to activate a dormant backdoor on the device. Linux rootkits are malware installed as kernel modules in the operating system. SecurityAffairs – hacking, Syslogk).

Malware 77

Malware System Administration Antivirus Architecture 77

Security Affairs

MARCH 10, 2020

In human-operated ransomware attack scenario, attackers use stolen credentials, exploit misconfiguration and vulnerabilities to access target networks, attempt to escalate privileges and move laterally, and deliver malware and exfiltrate data. SecurityAffairs – hacking, Human-operated ransomare). ” continues Microsoft.

Ransomware 115

Ransomware Cybercrime Social Engineering Banking 115

Krebs on Security

SEPTEMBER 30, 2023

The government says Snatch used a customized ransomware variant notable for rebooting Microsoft Windows devices into Safe Mode — enabling the ransomware to circumvent detection by antivirus or endpoint protection — and then encrypting files when few services are running. Details after contacting on jabber: truniger@xmpp[.]jp.”

Ransomware 218

Ransomware Accountability Cybercrime Backups 218

Security Affairs

JUNE 27, 2019

“The hacking campaign, known as “ Cloud Hopper ,” was the subject of a U.S. ” The report attributed the cyberespionage campaign to the China-linked APT10 (aka Menupass, and Stone Panda), the same group recently accused of hacking telco operators worldwide. SecurityAffairs – Cloud Hopper, hacking).

Identity Theft 82

Identity Theft Hacking System Administration Advertising 82