A New CrossLock Ransomware Threat with Cross-Platform Capabilities and Double Extortion Techniques
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary CrossLock ransomware, implemented in Go programming language, uses double extortion technique to encrypt and exfiltrate data, posing a significant threat to businesses and organizations. To receive real-time threat advisories, please follow …
New Wave of QBot Attacks Detected via Malicious PDF Attachments
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new wave of QBot banking Trojan attacks was identified in April 2023, utilizing malicious PDF attachments in emails written in various languages. To receive real-time threat advisories, please follow HiveForce …
LockBit Ransomware Targets MacOS
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary LockBit ransomware has been discovered on VirusTotal compiled for Apple’s macOS arm64 architecture, raising concerns about the ransomware threat on Mac devices. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
FIN7 & Wizard Spider team up to disseminate Domino malware
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary FIN7 threat actors and Wizard Spider collaborate to distribute ‘Domino’ malware family in recent attacks. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
New Zaraza Bot Malware Steals Login Credentials from 38 Web Browsers via Telegram
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new credential-stealing malware named Zaraza bot uses Telegram as its command and control, targeting 38 web browsers and exfiltrating sensitive data for potential identity theft and financial fraud. To receive …
APT36 targets Indian educational institutions with Crimson RAT
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary APT36 is targeting educational institutions and students in the Indian subcontinent by distributing malicious documents to stage the Crimson RAT. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
Kadavro Vector Ransomware spread as a fake Tor browser installer
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Kadavro Vector is a NoCry ransomware variant that encrypts files and demands Monero (XMR) cryptocurrency for decryption. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
Google Chrome Emergency Update Fixes Zero-Day Exploit in the Wild
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A potential vulnerability in Google Chrome versions before 112.0.5615.121, identified as CVE-2023-2033, involves Type confusion in V8, which could allow a remote attacker to potentially exploit heap corruption by using a …
Rilide Stealer Extension Targets Chromium-Based Browsers
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Rilide Stealer Extension is a sophisticated malware that disguises itself as a benign Google Drive extension and targets Chromium-based browsers. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
The Bitter Group Targets Chinese Agencies with CHM Malware via Email Attachments
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Bitter group targets South Asian government agencies with Office documents and has recently distributed CHM malware to specific Chinese organizations via email attachments. To receive real-time threat advisories, please follow …