Collaborate Disseminate
Bitdefender identified a new attack attributed to a sophisticated actor offering advanced-persistent-threats-as-a-service
The targeted company is engaged in architectural projects with billion-dollar luxury real-estate developers in New York, Lon… Continue reading APT Mercenary Groups Pose Real Threat to Companies But Detecting Tactics and Techniques is Within Reach
Bitdefender researchers have recently found the APT group StrongPity has been targeting victims in Turkey and Syria. Using watering hole tactics to selectively infect victims and deploying a three-tier C&C infrastructure to thwart forensic investig… Continue reading StrongPity APT – Revealing Trojanized Tools, Working Hours and Infrastructure
Bitdefender researchers have recently found an increasing number of SSH-targeting bots written in Golang. Traditionally, popular malware is written in C, C++ and Perl, and it’s rare that we see attackers creating new malware or bots from scratch,… Continue reading SSH-Targeting Golang Bots Becoming the New Norm
An advanced Russian government cyber-espionage unit has been exploiting a known Exim email server vulnerability since August 2019, according to an NSA security alert. The NSA said the Russian hackers are part of the GRU Main Center for Special Technolo… Continue reading Russian ’Sandworm‘ Hackers Attacking Exim Email Servers, Says NSA
With healthcare systems under constant strain amid the SARS-CoV-2 global pandemic, hospitals and healthcare facilities around the world have also been hit by a wave of cyberattacks, including ransomware attacks. While officials have already issued warn… Continue reading Global Ransomware and Cyberattacks on Healthcare Spike during Pandemic
A group of sophisticated threat actors known as OceanLotus or PhantomLance has recently become known for disseminating advanced Android threats via official and third-party marketplaces since 2014. They have sought to remotely control infected devices,… Continue reading Android Campaign from Known OceanLotus APT Group Potentially Older than Estimated, Abused Legitimate Certificate
With the Coronavirus pandemic still going strong, cybercriminals have continued leveraging this crisis by pushing threats designed to compromise victims’ data and security. If during mid-March we’d already seen a five-fold increase in Coron… Continue reading Coronavirus-themed Threat Reports Haven’t Flattened The Curve
Bitdefender researchers have recently found a new IoT botnet packing new features and capabilities that put to shame most IoT botnets and malware that we’ve seen. We named the botnet “dark_nexus” based on a string it prints in its ban… Continue reading New dark_nexus IoT Botnet Puts Others to Shame
With many of us stuck at home because of the pandemic, it’s only natural that streaming services will experience a surge in members and traffic. Netflix is clearly among them, and to make sure that there’s enough to go around for everyone w… Continue reading Netflix Phishing Campaign Spikes in Brazil with Account Update/Suspended Tricks
As new developments regarding the coronavirus outbreak emerge, Android developers (malware developers included) have started capitalizing the topic. Bitdefender researchers have recently analyzed Android telemetry from Google Play – and other thi… Continue reading Android Apps and Malware Capitalize on Coronavirus