HackDig : Dig high-quality web security articles for hackers

Himera and AbSent-Loader Leverage Covid19 lures

Researchers at ZLab spotted a new phishing campaign using Covid19 lures to spread Himera and Absent-Loader.   Introduction During our Cyber Defense monitoring activities we intercepted waves of incoming emails directed to many companies under our protective umbrella. These messages were leveraging FMLA (Family and Medical Leave Act) requests related to
Publish At:2020-05-29 13:44 | Read:40 | Comments:0 | Tags:Breaking News Cyber Crime Malware coronavirus COVID-19 covid

NetBeans Projects on GitHub Targeted in Apparent Supply Chain Attack

GitHub revealed on Thursday that tens of open source NetBeans projects hosted on its platform were targeted by a piece of malware as part of what appears to be a supply chain attack.GitHub learned about the malware, which has been named Octopus Scanner, on March 9 from a security researcher who noticed that several repositories hosted on GitHub had been serv
Publish At:2020-05-29 12:27 | Read:73 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Steganography in targeted attacks on industrial enterprises in Japan and Europe

Threat actors targeted industrial suppliers in Japan and several European countries in sophisticated attacks, Kaspersky reported. Researchers from Kaspersky’s ICS CERT unit reported that threat actors targeted industrial suppliers in Japan and several European countries in sophisticated attacks. The experts first observed the attacks in early 2020, whi
Publish At:2020-05-29 06:01 | Read:72 | Comments:0 | Tags:Breaking News Hacking Malware hacking news industrial contro

Industrial Suppliers in Japan, Europe Targeted in Sophisticated Attacks

Threat actors have targeted industrial suppliers in Japan and several European countries in sophisticated attacks that employed various techniques to make malware detection and analysis more difficult, Kaspersky’s ICS CERT unit reported on Thursday.The first attacks were spotted in early 2020 and, as of early May, Kaspersky has seen targeted organizations in
Publish At:2020-05-28 17:07 | Read:96 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Phishing

Improved Version of Valak Malware Targets Enterprises in US, Germany

Recent versions of the Valak malware have been used in attacks targeting Microsoft Exchange servers at organizations in the United States and Germany, Cybereason’s Nocturnus researcher team warns.Discovered in late 2019, when it was used as a loader for malware such as Ursnif (aka Gozi) and IcedID, Valak has evolved into a sophisticated piece of malware that
Publish At:2020-05-28 13:16 | Read:72 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Google TAG report Q1 details about nation-state hacking and disinformation

Google Threat Analysis Group (TAG) has published today its first TAG quarterly report that analyzes rising trends in nation-state and financially motivated attacks. Google also discloses seven coordinated political influence campaigns that took place on its platforms during Q1 2020. The Google Threat Analysis Group (TAG) is a group inside the Google
Publish At:2020-05-28 11:26 | Read:72 | Comments:0 | Tags:Breaking News Cyber Crime Cyber warfare Hacking Malware Goog

Google Says Iran-Linked Hackers Targeted WHO

Google reported on Wednesday that it continues to see attacks launched by the Iran-linked threat group named Charming Kitten against medical and healthcare professionals, including employees of the World Health Organization (WHO).Charming Kitten, which experts believe is sponsored by the Iranian government, is also tracked as APT35, Ajax Security Team, NewsB
Publish At:2020-05-28 08:05 | Read:71 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Phishin

Android ‘StrandHogg 2.0’ flaw lets malware assume identity of any app

byJohn E DunnResearchers have publicised a critical security flaw in Android which could be used by attackers to “assume the identity” of legitimate apps in order to carry out on-device phishing attacks.Discovered by Norwegian company Promon, the bug is called ‘StrandHogg 2.0’, the name denoting that this is an “evil twin” follow up to a similar flaw of the
Publish At:2020-05-28 07:31 | Read:61 | Comments:0 | Tags:Malware Phishing Vulnerability Android promon StrandHogg 2.0

Ke3chang hacking group adds new Ketrum malware to its arsenal

The Ke3chang hacking group added a new malware dubbed Ketrum to its arsenal, it borrows portions of code and features from older backdoors. The Ke3chang hacking group (aka APT15, Vixen Panda, Playful Dragon, and Royal APT) has developed new malware dubbed Ketrum by borrowing parts of the source code and features from their older Ketrican and Okrum backdoo
Publish At:2020-05-28 06:51 | Read:159 | Comments:0 | Tags:APT Cyber warfare Hacking Malware APT15 China cyber espionag

Valak a sophisticated malware that completely changed in 6 months

Valak malware has rapidly changed over the past six months, it was initially designed as a loader, but now it implemented infostealer capabilities. The Valak malware completely changed over the past six months, it was first developed to act as a loader, but now it implements also infostealer capabilities.  The malicious code fist appeared in the threat
Publish At:2020-05-28 06:51 | Read:107 | Comments:0 | Tags:Breaking News Cyber Crime Malware infostealer IT malware Sec

Microsoft warns about ongoing PonyFinal ransomware attacks

Microsoft is warning organizations to deploy protections against a new strain of PonyFinal ransomware that has been in the wild over the past two months. Microsoft’s security team issued a series of tweets warning organizations to deploy protections against a new piece of ransomware dubbed PonyFinal that has been in the wild over the past two months
Publish At:2020-05-27 19:16 | Read:144 | Comments:0 | Tags:Breaking News Cyber Crime Malware Hacking information securi

Grandoreiro Malware implements new features in Q2 2020

The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks Grandoreiro is a Latin American banking trojan targeting Brazil, Mexico, Spain, Peru, and has now extended to Portugal. Cybercriminals attempt to compromise computers to generate revenue by exfiltrating information from victims’ devices, typic
Publish At:2020-05-27 15:52 | Read:56 | Comments:0 | Tags:Breaking News Cyber Crime Malware

The evolution of ransomware in 2019: attackers think bigger, go deeper and grow more advanced

The number of ransomware attacks increased by 40 percent last year, according to Group-IB attackers think bigger and grow more advanced. Group-IB, a Singapore-based cybersecurity company that specializes in preventing cyberattacks, found out that the year of 2019 was marked by ransomware evolution and was dominated by increasingly aggressive ransomware ca
Publish At:2020-05-27 15:24 | Read:64 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware information securi

Fuckunicorn ransomware targets Italy in COVID-19 lures

A new piece of ransomware dubbed FuckUnicorn it targeting Italy by tricking victims into downloading a fake COVID-19 contact tracing app. A new ransomware dubbed FuckUnicorn has been targeting computers in Italy by tricking victims into downloading a fake contact tracing app, named Immuni, that promises to provide real-time updates for the COVID-19 outbre
Publish At:2020-05-27 11:32 | Read:74 | Comments:0 | Tags:Breaking News Cyber Crime Malware coronavirus COVID-19 fucku

Researchers dismantled ShuangQiang gang’s botnet that infected thousands of PCs

A joint operations conducted by experts from Chinese firms Qihoo 360 Netlab and Baidu dismantle the ShuangQiang ‘s botnet infecting over hundreds of thousands of systems. A joint operation conducted by Chinese security firm Qihoo 360 Netlab and tech giant Baidu disrupted a botnet operated by a group tracked as ShuangQiang (aka Double Gun) that infec
Publish At:2020-05-27 11:32 | Read:81 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet information

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud