Malware Archives - Page 3 of 30

H0lyGh0st ransomware actors target small and midsize businesses

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / July 17, 2022 July 17, 2022 / Andariel, BLTC.exe, BTLC_C.exe, C2, Cybersecurity Threat Center, DarkSeoul, DEV-0530, H0lyGh0st, HolyGhost, HolyLock.exe, HolyRS.exe, Microsoft, MSTIC, North Korea, Plutonium, Ransomware, SiennaBlue, SiennaPurple, Small Business, SMB

Security researchers from Microsoft warn threat actors from North Korea are using H0lyGh0st ransomware to target small and midsize businesses around the globe.

OrBit: New evasive and persistent Linux malware

Malware, Vulnerabilities & Exploits / By Frank Crast / July 9, 2022 July 9, 2022 / Cybersecurity Threat Center, Linux, malware, OrBit, payload

Researchers from Intezer have discovered a new evasive and persistent Linux malware dubbed OrBit.

ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks

Cybersecurity Attacks, Malware, Network Security / By Frank Crast / July 8, 2022 July 8, 2022 / ASUS, Black Lotus Labs, Cisco, CVE-2020-26878, CVE-2020-26879, Cybersecurity Attack, Cybersecurity Threat Center, DrayTek, Lumen, NETGEAR, Python, Small Office, SOHO, ZuoRAT

Threat actors are using a multi-stage malware dubbed ZuoRAT to exploit small office/home office (SOHO) routers and launch sophisticated attacks against North American and European networks.

Maui ransomware targets entities in the Healthcare and Public Health sector

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 July 6, 2022 / CISA, Cybersecurity Threat Center, FBI, Health, healthcare, HPH, Maui, Public Health, Treasury

Cybersecurity experts warn North Korean State-Sponsored threat actors are using Maui ransomware to target entities in the Healthcare and Public Health (HPH) sector.

MedusaLocker ransomware threat

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 July 6, 2022 / MedusaLocker, Ransomware

Threat actors are exploiting primarily Remote Desktop Protocol (RDP) vulnerabilities on victim computers to deploy MedusaLocker ransomware.

Toll fraud Android malware is major threat to steal your money

Malware, Mobile Security / By Frank Crast / July 4, 2022 July 4, 2022 / Android, Cybersecurity Threat Center, Google Play Store, malware, Microsoft, mobile, toll fraud

Researchers from Microsoft warn that toll fraud Android malware has been one of the most prevalent malware downloaded from the Google Play Store since 2017 and is a major threat to steal your money.

Symbiote: Linux malware ‘nearly impossible to detect’ threat

Cybersecurity Attacks, Malware / By Frank Crast / June 11, 2022 June 11, 2022 / Blackberry, BPF, Cyberattack, Cybersecurity Threat Center, Linux, malware, Symbiote

Researchers have discovered a new Linux malware dubbed Symbiote, a ‘nearly impossible to detect’ threat.

XorDdos: DDoS malware targets Linux systems

Cybersecurity Attacks, Malware / By Frank Crast / May 21, 2022 May 21, 2022 / DDoS, Linux, malware, XORDDoS

Over the past six months, Microsoft has observed a spike in cyberactivity of 254% from XorDdos, a trojan targeting Linux-based cloud systems and Internet of Things (IoT) devices.

Homemade DCRat can open “backdoors on a budget”

Malware / By Frank Crast / May 10, 2022 May 10, 2022 / backdoor, Blackberry, DarkCrystal, DCRat, malware, RAT

Researchers from Blackberry have discovered a redesigned remote access trojan DCRat that a lone cyber criminal is now offering as a homemade tool for opening “backdoors on a budget.”

Emotet botnet reemerges with new threat behaviors

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / May 4, 2022 May 4, 2022 / AppX, botnet, Emotet, malware, TA542, XLL

Researchers from Proofpoint have observed the reemergence of Emotet botnet that has exhibited new behaviors in using new attack techniques.