Cisco Blogs / Security / Threat Research / PoetRAT: Malware targeting public and private sector in Azerbaijan evolves Cisco Talos discovered PoetRAT earlier this year. We have continued to monitor this actor and their behavior over the preceding months. We have observed multiple new campaigns indicating a change in the actor’s capabilities and showing their … [Read more...] about PoetRAT: Malware targeting public and private sector in Azerbaijan evolves
Targeting
ALERT! Hackers targeting IoT devices with a new P2P botnet malware
Cybersecurity researchers have taken the wraps off a new botnet hijacking Internet-connected smart devices in the wild to perform nefarious tasks, mostly DDoS attacks, and illicit cryptocurrency coin mining. Discovered by Qihoo 360's Netlab security team, the HEH Botnet — written in Go language and armed with a proprietary peer-to-peer (P2P) protocol, spreads via a brute-force … [Read more...] about ALERT! Hackers targeting IoT devices with a new P2P botnet malware
Researchers Uncover 6-Year Cyber Espionage Campaign Targeting Iranian Dissidents
Capping off a busy week of charges and sanctions against Iranian hackers, a new research offers insight into what's a six-year-long ongoing surveillance campaign targeting Iranian expats and dissidents with an intention to pilfer sensitive information. The threat actor, suspected to be of Iranian origin, is said to have orchestrated the campaign with at least two different … [Read more...] about Researchers Uncover 6-Year Cyber Espionage Campaign Targeting Iranian Dissidents
Evilnum hackers targeting financial firms with a new Python-based RAT
An adversary known for targeting the fintech sector at least since 2018 has switched up its tactics to include a new Python-based remote access Trojan (RAT) that can steal passwords, documents, browser cookies, email credentials, and other sensitive information.In an analysis published by Cybereason researchers yesterday, the Evilnum group has not only tweaked its infection … [Read more...] about Evilnum hackers targeting financial firms with a new Python-based RAT
A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide
Cybersecurity researchers today took the wraps off a sophisticated, multi-functional peer-to-peer (P2P) botnet written in Golang that has been actively targeting SSH servers since January 2020.Called "FritzFrog," the modular, multi-threaded and file-less botnet has breached more than 500 servers to date, infecting well-known universities in the US and Europe, and a railway … [Read more...] about A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide
US Charges 2 Chinese Hackers for Targeting COVID-19 Research and Trade Secrets
The U.S. Department of Justice (DoJ) yesterday revealed charges against two Chinese nationals for their alleged involvement in a decade-long hacking spree targeting dissidents, government agencies, and hundreds of organizations in as many as 11 countries.The 11-count indictment, which was unsealed on Tuesday, alleges LI Xiaoyu (李啸宇) and DONG Jiazhi (董家志) stole terabytes of … [Read more...] about US Charges 2 Chinese Hackers for Targeting COVID-19 Research and Trade Secrets
A New Ransomware Targeting Apple macOS Users Through Pirated Apps
Cybersecurity researchers this week discovered a new type of ransomware targeting macOS users that spreads via pirated apps.According to several independent reports from K7 Lab malware researcher Dinesh Devadoss, Patrick Wardle, and Malwarebytes, the ransomware variant — dubbed "EvilQuest" — is packaged along with legitimate apps, which upon installation, disguises itself as … [Read more...] about A New Ransomware Targeting Apple macOS Users Through Pirated Apps
New Group of Hackers Targeting Businesses with Financially Motivated Cyber Attacks
Security researchers have tracked down activities of a new group of financially-motivated hackers that are targeting several businesses and organizations in Germany, Italy, and the United States in an attempt to infect them with backdoor, banking Trojan, or ransomware malware.Though the new malware campaigns are not customized for each organization, the threat actors appear to … [Read more...] about New Group of Hackers Targeting Businesses with Financially Motivated Cyber Attacks
Russian Hacking Group Targeting Banks Worldwide With Evolving Tactics
Silence APT, a Russian-speaking cybercriminal group, known for targeting financial organizations primarily in former Soviet states and neighboring countries is now aggressively targeting banks in more than 30 countries across America, Europe, Africa, and Asia.Active since at least September 2016, Silence APT group's most recent successful campaign was against Bangladesh-based … [Read more...] about Russian Hacking Group Targeting Banks Worldwide With Evolving Tactics
‘Legit Apps Turned into Spyware’ Targeting Android Users in Middle East
Cybersecurity researchers are warning about an ongoing Android malware campaign that has been active since 2016 and was first publicly reported in August 2018.Dubbed "ViceLeaker" by researchers at Kaspersky, the campaign has recently been found targeting Israeli citizens and some other middle eastern countries with a powerful surveillance malware designed to steal almost all … [Read more...] about ‘Legit Apps Turned into Spyware’ Targeting Android Users in Middle East