🚨 Horns & Hooves Campaign Delivers NetSupport RAT 🚨 A new phishing campaign, dubbed "Horns & Hooves," is targeting users with malicious scripts disguised as business documents. Here's what you need to know: 🔑 Key Details: - Campaign active since March 2023, targeting

🚨 Kimsuky APT Group's Phishing Campaign Analysis 🚨 The Kimsuky group, a North Korea-linked APT, continues to target South Korean organizations with phishing campaigns. Here's what you need to know: 🔑 Key Details: - Targets: Researchers, government, and related

🚨 AgentTesla Returns with Updated Loader & Advanced Encryption 🚨 The infamous **AgentTesla** infostealer is back, with attackers refining their techniques after a failed campaign. Here's what you need to know: 🔑 Key Details: - Initial attack failed due to a missing

🚨 SmokeLoader Targets Companies in Taiwan 🚨 A sophisticated phishing campaign using **SmokeLoader** malware has been observed targeting industries in Taiwan, including manufacturing, healthcare, and IT. Here's what you need to know: 🔑 Key Details: - **Delivery

🚨 RevC2 & Venom Loader Campaigns Unveiled 🚨 Zscaler ThreatLabz has uncovered two new malware families, **RevC2** and **Venom Loader**, used in sophisticated campaigns by the Venom Spider group. Here's what you need to know: 🔑 Key Details: - **RevC2**: A backdoor using

🚨 Threat Assessment: Howling Scorpius (Akira Ransomware) 🚨 The **Howling Scorpius** group, behind the Akira ransomware, is among the top 5 most active ransomware groups. Here's what you need to know: 🔑 Key Details: - **Double Extortion**: Exfiltrates data before

🚨 New Andromeda/Gamarue C2 Cluster Discovered 🚨 Cybereason has uncovered a new cluster of Andromeda/Gamarue C2 servers targeting manufacturing and logistics companies in the APAC region. Here's what you need to know: 🔑 Key Details: - Target: APAC manufacturing and

🚨 November 2024: Security Issues in the Financial Industry 🚨 AhnLab's latest report highlights major cyber threats targeting the financial sector in South Korea and globally. Here's a breakdown: 🔑 Key Threats: - Database leaks: - Hungarian bank OT*** data leaked on

🚨 Russian Programmer Wanted by FBI to Stand Trial in Kaliningrad 🚨 A programmer accused of creating ransomware is set to face trial in Kaliningrad. Here's what we know: 🔑 Key Details: - The accused, identified as Mikhail Matveev, is wanted by the FBI, which has offered

🚨 Operation Destabilise: NCA Disrupts Multi-Billion Russian Money Laundering Networks 🚨 The National Crime Agency (NCA) has dismantled Russian money laundering networks linked to drugs, ransomware, and espionage. Here's what you need to know: 🔑 Key Details: - Two

🚨 Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks 🚨 A joint advisory from Australia, Canada, New Zealand, and the U.S. highlights a cyber espionage campaign by **PRC-backed Salt Typhoon** targeting telecom providers. Here's what you need to

🚨 Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware 🚨 The Black Basta ransomware group has launched a new social engineering campaign with updated tactics and malware payloads. Here's what you need to know: 🔑 Key Details: - Initial access: Email

🚨 From a Regular Infostealer to an Obfuscated Version 🚨 A new analysis reveals how attackers are using advanced obfuscation techniques to bypass security controls and make malware analysis more challenging. Here's what you need to know: 🔑 Key Details: - Malware:

🚨 Phishing Malware Impersonating the National Tax Service (NTS) 🚨 AhnLab has observed a surge in phishing emails impersonating the National Tax Service (NTS), especially during tax filing periods. Here's what you need to know: 🔑 Key Details: - Delivery methods: 1.

🚨 C2 in Browser Isolation Environments: A Novel Attack Technique 🚨 Mandiant has uncovered a new method to bypass browser isolation technologies using QR codes for command-and-control (C2). Here's what you need to know: 🔑 Key Details: - **Browser Isolation Types**:

🚨 Threat Actor Targets Manufacturing Industry with Lumma Stealer & Amadey Bot 🚨 Cyble has uncovered a sophisticated campaign targeting the manufacturing sector. Here's what you need to know: 🔑 Key Details: - Attack starts with a malicious LNK file disguised as a PDF,

🚨 VPN Exploitation in SaaS Environments: Darktrace Detection 🚨 Darktrace uncovered a phishing attack leveraging VPNs to exploit SaaS environments. Here's what happened: 🔑 Key Details: - Attack began with a phishing email compromising an internal account. - Threat

🚨 The Growing Threat of DocuSign Phishing Attacks 🚨 Cado Security Labs has identified a spearphishing campaign targeting tech executives using fake DocuSign emails. Here's what you need to know: 🔑 Key Details: - Attackers mimic DocuSign branding to trick users into

🚨 Payroll Pirates: HR Phishing Campaign Targets Payroll Systems 🚨 Silent Push has uncovered a phishing campaign, dubbed "Payroll Pirates," targeting HR payroll systems to redirect employee funds. Here's what you need to know: 🔑 Key Details: - Attackers use phishing

🚨 German Authorities Shut Down Crimenetwork, Germany's Largest Crime Marketplace 🚨 German authorities have dismantled Crimenetwork, a major online crime marketplace. Here's what you need to know: 🔑 Key Details: - Crimenetwork was a hub for illegal activities, including