RAT – WindowsTechs.com

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

Posted on November 9, 2024 by Deeba Ahmed

This article explains the inner workings of the Remcos RAT, a dangerous malware that uses advanced techniques to… Continue reading Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows→

Awaken Likho is awake: new techniques of an APT group

Posted on October 7, 2024 by Kaspersky

Kaspersky experts have discovered a new version of the APT Awaken Likho RAT Trojan, which uses AutoIt scripts and the MeshCentral system to target Russian organizations. Continue reading Awaken Likho is awake: new techniques of an APT group→

Key Group: another ransomware group using leaked builders

Posted on October 1, 2024 by Kaspersky

Kaspersky experts studied the activity of Key Group, which utilizes publicly available builders for ransomware and wipers, as well as GitHub and Telegram. Continue reading Key Group: another ransomware group using leaked builders→

From 12 to 21: how we discovered connections between the Twelve and BlackJack groups

Posted on September 25, 2024 by Kaspersky

An investigation of BlackJack’s software, TTPs, and motivations led Kaspersky experts to identify a possible connection with the Twelve group. Continue reading From 12 to 21: how we discovered connections between the Twelve and BlackJack groups→

Exotic SambaSpy is now dancing with Italian users

Posted on September 18, 2024 by GReAT

Kaspersky researchers detected a campaign exclusively targeting Italian users by delivering a new RAT dubbed SambaSpy Continue reading Exotic SambaSpy is now dancing with Italian users→

There’s a way to embed malware in excel nowadays? [closed]

Posted on August 30, 2024 by Gustavorapitow

How hackers embed a malware into a Excel file? Let’s say it maybe a simple RAT. Bypassing Windows Defender and not showing any strange macro blocks on opening, is this something possible to do? I’m starting to study more about this, and I … Continue reading There’s a way to embed malware in excel nowadays? [closed]→

BlindEagle flying high in Latin America

Posted on August 19, 2024 by GReAT

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries. Continue reading BlindEagle flying high in Latin America→

APT trends report Q2 2024

Posted on August 13, 2024 by GReAT

The report features the most significant developments relating to APT groups in Q2 2024, including the new backdoor in Linux utility XZ, a new RAT called SalmonQT, and hacktivist activity. Continue reading APT trends report Q2 2024→

New Data-Stealing Poco RAT Campaign Targeting Spanish Speakers

Posted on July 15, 2024 by Deeba Ahmed

New Poco RAT Malware Targets Spanish Speakers Through Emails! Disguised as financial documents, Poco RAT steals your info… Continue reading New Data-Stealing Poco RAT Campaign Targeting Spanish Speakers→

Canary Token (from canarytokens.org) still getting triggered despite reinstalling Windows? [closed]

Posted on June 29, 2024 by Jof

I installed the token months ago, have since wiped my drive and reinstalled windows, but I still get email notifications saying my token is triggered?
THe token in question is called a FAST URL REDIRECT (Alert When a URL is Visited, User i… Continue reading Canary Token (from canarytokens.org) still getting triggered despite reinstalling Windows? [closed]→