Deploy

North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

by
North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

Dec 27, 2024Ravie LakshmananCryptocurrency / Cyber Espionage North Korean threat actors behind the ongoing Contagious Interview campaign have been observed dropping a new JavaScript malware called OtterCookie. Contagious Interview (aka DeceptiveDevelopment) refers to a persistent attack campaign that employs social engineering lures, with the hacking crew often posing as recruiters to trick individuals looking for … Read more

Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware – Go Health Pro

by
Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware – Go Health Pro

Dec 17, 2024Ravie LakshmananMalware / Credential Theft A new social engineering campaign has leveraged Microsoft Teams as a way to facilitate the deployment of a known malware called DarkGate. “An attacker used social engineering via a Microsoft Teams call to impersonate a user’s client and gain remote access to their system,” Trend Micro researchers Catherine … Read more

PDQ Deploy users warned of credential-theft risk – Go Health Pro

by
PDQ Deploy users warned of credential-theft risk – Go Health Pro

The CERT Coordination Center (CERT/CC) published a vulnerability note regarding the risk of admin credential theft for users of PDQ Deploy. PDQ Deploy is a service that enables system administrators to deploy software and updates to machines within their network. The CERT/CC notice, published Wednesday, describes how admin credentials used by PDQ Deploy to install … Read more

Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia – Go Health Pro

by
Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia – Go Health Pro

Nov 22, 2024Ravie LakshmananCyber Espionage / Malware Threat actors with ties to Russia have been linked to a cyber espionage campaign aimed at organizations in Central Asia, East Asia, and Europe. Recorded Future’s Insikt Group, which has assigned the activity cluster the name TAG-110, said it overlaps with a threat group tracked by the Computer … Read more

Gophish Framework Used in Phishing Campaigns to Deploy Remote Access Trojans – Go Health Pro

by
Gophish Framework Used in Phishing Campaigns to Deploy Remote Access Trojans – Go Health Pro

Russian-speaking users have become the target of a new phishing campaign that leverages an open-source phishing toolkit called Gophish to deliver DarkCrystal RAT (aka DCRat) and a previously undocumented remote access trojan dubbed PowerRAT. “The campaign involves modular infection chains that are either Maldoc or HTML-based infections and require the victim’s intervention to trigger the … Read more