Collaborate Disseminate
In mid-2020, we realized that Lazarus was launching attacks on the defense industry using the ThreatNeedle cluster, an advanced malware cluster of Manuscrypt (a.k.a. NukeSped). While investigating this activity, we were able to observe the complete life cycle of an attack, uncovering more technical details and links to the group’s other campaigns. Continue reading Lazarus targets defense industry with ThreatNeedle
Spear-phishing attacks targeting VIPs and others show key malware changes and are likely linked to the current conflict with Armenia. Continue reading PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict
Juniper identifies phishing campaign targeting business customers with malware using password protection, among other techniques, to avoid detection. Continue reading IcedID Trojan Rebooted with New Evasive Tactics
At Black Hat 2020, Patrick Wardle disclosed an exploit chain that bypasses Microsoft’s malicious macros protections to infect MacOS users. Continue reading Black Hat 2020: ‘Zero-Click’ MacOS Exploit Chain Uses Microsoft Office Macros
[Arik Yavilevich] recently upgraded his second-gen Mazda’s control console, going from the stock busy box to an Android head unit that does it all on a nice big touchscreen. It can also take input from the handy steering wheel buttons — these are a great option for keeping your eyes …read more
The email says it will let you have your say anonymously about Black Lives Matter. Continue reading Crooks hijack “Black Lives Matter” to spread zombie malware
These charts aren’t “horrible” because of their coronavirus data – they’re horrible because they could let criminals conquer your computer. Continue reading Beware of emails with “horrible charts” about Covid-19
Recent analysis from IBM X-Force spam traps uncovered a new Trickbot campaign that currently targets email recipients with fake messages purporting to come from the U.S. Department of Labor.
The post TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam appeared first on Security Intelligence.
Continue reading TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam
XLS files sent via emails appear password protected but aren’t, opening automatically to install malware from compromised macros, according to researchers. Continue reading Hackers Update Age-Old Excel 4.0 Macro Attack
The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency and the U.K. National Cyber Security Centre recently released a rare joint statement warning of the rise of APT groups using phishing campaigns exploiting the wo… Continue reading Hackers Using APTs To Exploit Covid-19 Fears