Researchers have reported how popular game installers like Super Mario Games are being used to deliver malware. The malicious components include cryptominers,…
Tag: C2
VASTFLUX ad fraud massively affected millions of iOS devices, dismantled
Researchers have successfully dismantled a massive ad fraud campaign they stumbled upon by accident. The Satori Threat Intelligence and Research Team dubbed…
Point-of-sale malware used to steal 167,000 credit cards
In the 19 months between February 2021 and September 2022, two point-of-sale (POS) malware operators have stolen more than 167,000 payment…
Winnti APT group docks in Sri Lanka for new campaign
In early August, the Malwarebytes Threat Intelligence team identified a new attack targeting government entities in Sri Lanka. The threat actors…
Cryptojackers growing in numbers and sophistication
With rising energy costs and increased volatility in the value of cryptocurrencies, we were bound to see a rise in malicious cryptomining, aka…
Hermit spyware is deployed with the help of a victim’s ISP
Google’s Threat Analysis Group (TAG) has revealed a sophisticated spyware activity involving ISPs (internet service providers) aiding in downloading powerful commercial…
Denonia cryptominer is first malware to target AWS Lambda
Security researchers at Cado Security, a cybersecurity forensics company, recently discoveredthe first publicly-known malware targeting Lambda, the serverless computing platform of…
Duo of Android dropper and payload target certain countries and app users
After making its first in-the-wild appearance in March 2021, Vultur—an information-stealing RAT that runs on Android—is back. And its dropper is…
Emotet’s back and it isn’t wasting any time
Emotet is one of the best known, and most dangerous, malware threats of the past several years. On several occasions it…
Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature
This blog post was authored by Hossein Jazi and Jérôme Segura On June 10, we found a malicious Word document disguised…