Categoria: Malware

Hamas Cyberspies Return With New Malware After Exposure of Operations

A cyberespionage group linked in the past to the Palestinian terrorist organization Hamas took a break after its operations were exposed last summer and returned with new tools and techniques.

Microsoft Patches for 51 Windows Security Defects

Microsoft’s Patch Tuesday train rumbled into Windows networks with fixes for 51 documented security vulnerabilities, some serious enough to cause full computer takeover attacks.

Law Enforcement Blowback, Cyber Insurance Renewals Powering Anti-Ransomware Success

Ransomware Trends

High-Severity Flaw in Argo CD is Information Leak Risk

A high-severity security vulnerability in Argo CD could allow an attacker to access sensitive information from target applications.

Microsoft Says Mac Trojan Becoming Stealthier, More Menacing

Malware hunters at Microsoft are calling attention to a nasty macOS malware family that has evolved quickly from a basic information-gathering trojan to a stealthy backdoor with more powerful capabilities.

Microsoft Disables MSIX Protocol Due to Abuse by Malware

Microsoft announced on Friday that the ms-appinstaller protocol for MSIX has been disabled temporarily due to the fact that it has been abused by malware.

FBI Publishes IOCs for LockBit 2.0 Ransomware Attacks

The Federal Bureau of Investigation (FBI) on Friday released indicators of compromise (IOCs) associated with the LockBit 2.0 ransomware.

LockBit 2.0, which is distributed as a Ransomware-as-a-Service (RaaS), makes detection and mitigation difficult, due to the use of a variety of tactics, techniques, and procedures (TTPs).

Ransomware Attack on Aviation Services Firm Swissport Leads to Flight Delays

Aviation services company Swissport on Friday said it was targeted in a cyberattack that has caused some disruption to its operations.

Microsoft, Symantec Share Notes on Russian Hacks Hitting Ukraine

Threat hunters at Microsoft and Symantec are sharing notes on a barrage of new cyberespionage attacks from Russia’s spy agency hitting organizations in Ukraine.

Chinese Hackers Target Financial Institutions in Taiwan With Custom Backdoor

Between 2020 and 2021, a China-linked advanced persistent threat (APT) actor ran an espionage campaign targeting financial institutions in Taiwan, Symantec reports.

Tracked as Antlion, the hacking group is believed to have been active since at least 2011, and is likely backed by the Chinese government.