The China-linked threat actor known as Mustang Panda has been attributed to a cyber attack targeting an unspecified organization in Myanmar with previously unreported tooling, highlighting continued effort by the threat actors to increase the sophistication and effectiveness of their malware. This includes updated versions of a known backdoor called TONESHELL, as well as a … Read more
The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented Go-based backdoor called GolangGhost on Windows and macOS systems. The new activity, assessed to be a continuation of the campaign, has been codenamed ClickFake Interview … Read more
A new variant of the InterPlanetary Storm malware is targeting IoT devices, such as TVs that run on Android operating systems, and Linux-based machines, such as routers with ill-configured SSH service, according to Barracuda Networks researchers. The new variant gains access to machines by running a dictionary attack against SSH servers, similar to FritzFrog, another … Read more
Mar 20, 2025Ravie LakshmananCybercrime / Malware The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a new campaign that targets the defense sectors with Dark Crystal RAT (aka DCRat). The campaign, detected earlier this month, has been found to target both employees of enterprises of the defense-industrial complex and individual representatives of the … Read more
Threat actors are increasingly looking to trick targets into infecting themselves with malware via phony CAPTCHA checks.HP Wolf said in its quarterly Threat Insight Report that attackers are more reliant in the phony checks as a method for tricking their targets into downloading and running malware that can be used as a foothold for larger-scale … Read more