It has been confirmed that law enforcement working closely with intelligence per...

Evil Corp's new iteration, the Macaw Locker was recently launched to bypass sanc...

RAT malware disguised as adult games is distributed through common platforms in ...

RaaS

REvil

REvil will retreat following the shutdown of their servers by Government, Resear...

It has been confirmed that law enforcement working closely with intelligence personnel managed to compromise REvil's servers by hijacking their internal systems......

23-Oct-2021

2 min read

Macaw Locker

Evil Corp

Phoenix

Evil Corp's New Variant- Macaw Locker Launched To Bypass US Sanctions

Evil Corp's new iteration, the Macaw Locker was recently launched to bypass sanctions issued by the US government...

23-Oct-2021

3 min read

RAT

South Korea

Webhards

UDP RAT malware disguised as Adult Games actively distributed among South Korean...

RAT malware disguised as adult games is distributed through common platforms in Korea such as Webhards and torrents...

23-Oct-2021

3 min read

Russia

Redline Infostealer

Amigoes

RedLine Stealer malware responsible for stealing majority of the credentials

RedLine Stealer malware is the key source for data collection across underground forums; it collects usernames, passwords, cookies, and payment card information and puts it up for sale online. ...

22-Oct-2021

3 min read

RCE

WinRAR

Two years old version of WinRAR detected with RCE Vulnerability tracked as CVE-2...

Free trial versions of WinRAR 5.70 consisted of a Remote Code Execution (RCE) vulnerability that allowed an attacker to intercept and modify requests; it has since been patched......

22-Oct-2021

4 min read

Cryptomining

NPM

Javascript

NPM Packages disguise as Javascript libraries to launch Cryptominers

Recently discovered NPM malware poses as a legitimate Javascript library but launches cryptocurrency miners in Windows, macOS, & Linux machines. ...

21-Oct-2021

2 min read

Cookie Stealer

YouTube

Phishing

YouTubers at stake, following the discovery of two years old Phishing campaign, ...

Google TAG discloses a two-year-old phishing campaign actively targeting the channels of YouTube creators using a cookie stealing malware, later sold to the highest bidder or used for cryptocurrency scams......

21-Oct-2021

3 min read

Intel SGX

SmashEx

Intel SGX vulnerable to a new 'SmashEx' Attack that leads to privilege escalatio...

Intel SGX vulnerability can be exploited with a new 'SmashEx' attack that allows privilege escalation and discloses arbitrary memory in enclaves......

21-Oct-2021

2 min read

XSLeak Vulnerability

Slack

Slack has no plans to patch the exploitable XSLeak Vulnerability to de-anonymize...

Slack's XSLeak vulnerability in its file-sharing functionality can allow threat actors to de-anonymize workspace members; Slack does not plan to release a fix for it... ...

20-Oct-2021

2 min read

FlawedGrace

TA505

RAT

TA505 resurfaces with new tools to deliver updated FlawedGrace RAT

TA505 campaigns have returned to distributing tens to hundreds of thousands malicious emails targetting German-speaking countries, now uses additional loaders to deliver the FlawedGrace RAT......

20-Oct-2021

5 min read