Collaborate Disseminate
A US court has sentenced a programmer to 30 months in a federal prison in connection with software that claimed to be a legitimate tool for Windows sysadmins to remotely manage computers, but was actually used by criminals to backdoor PCs and secretly … Continue reading RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
A US court has sentenced a programmer to 30 months in a federal prison in connection with software that claimed to be a legitimate tool for Windows sysadmins to remotely manage computers, but was actually used by criminals to backdoor PCs and secretly … Continue reading RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
If a hacker has placed a RAT inside an app linked to Gmail account, how can I deduce which app it is?! I know it has something to do with apk files.
No matter how many times I hard reset my phone, if I sign in my with a Gm… Continue reading Phone infection via Gmail registration [on hold]
Some of those who received the letters conjecture that it may be because they purchased the LuminosityLink RAT. Continue reading Ungagged Google warns users about FBI accessing their accounts
Dozens of people reported receiving an email from Google revealing a potential FBI investigation into people who purchased malware. Continue reading Google Notifies People Targeted by Secret FBI Investigation
I published the following diary on isc.sans.org: “Microsoft Publisher Files Delivering Malware“: Attackers are always searching for new ways to deliver malicious content to their victims. A few days ago, Microsoft Publisher malicious files were spotted by security researchers[1]. Publisher is a low-level desktop publishing application offered by Microsoft in
[The post [SANS ISC] Microsoft Publisher Files Delivering Malware has been first published on /dev/random]
Continue reading [SANS ISC] Microsoft Publisher Files Delivering Malware
U.S. law enforcement has been alerted to the use of the Remcos RAT in multiple global hacking campaigns, according to Cisco’s Talos Security Intelligence and Research Group. The ads say Remcos Remote Access Tool is legal IT management software. But the RAT allows a user to sneak malware by security products and then secretly surveil a targeted computer. Remcos itself is sold by a German-registered company, Breaking Security, that markets it as a legitimate way to remotely access computers. However, the software has been spotted in hacking campaigns targeting defense contractors in Turkey, news agencies, diesel equipment manufacturers, airlines and energy sector companies. “What we found here is a piece of software being used by bad guys in a lot of different places,” Cisco Talos director Craig Williams told CyberScoop. “They sell a crypter attempting to make the malware undetectable, a keylogger payload, a mass mailer to mail it out and they even have […]
The post Talos: Remcos software is a surveillance tool posing as legitimate software appeared first on Cyberscoop.
Continue reading Talos: Remcos software is a surveillance tool posing as legitimate software
A new email campaign includes a Microsoft Office Publisher file with malicious URLs leading to the FlawedAmmyy RAT. Continue reading Unique Malspam Campaign Uses MS Publisher to Drop a RAT on Banks
By Waqas
Proofpoint researchers have discovered a new remote access Trojan (RAT) as well as an updated version of an already identified banking Trojan and claim that both the RATs are involved in recently detected phishing campaigns targeting the retai… Continue reading Parasite HTTP RAT loaded with advanced detection evasion capability
This brand-new RAT represents the latest escalation in an ongoing malware arms race that extends even to commodity malware. Continue reading Highly Sophisticated Parasite RAT Emerges on the Dark Web