IT Sec News updates – Malware Attacks

July 26, 2023
NEWS

Lazarus targets Microsoft IIS servers to spread malware – SC Magazine

The North Korean state-sponsored APT group is using the compromised ISS web servers as malware distribution points.

Facebook Twitter

Over 400,000 corporate credentials stolen by info-stealing malware – Bleeping Computer

The analysis of nearly 20 million information-stealing malware logs sold on the dark web and Telegram channels revealed that they had achieved …

Facebook Twitter

Casbaneiro Banking Malware Goes Under the Radar with UAC Bypass Technique

The financially motivated threat actors behind the Casbaneiro banking malware family have been observed making use of a User Account Control (UAC) …

Facebook Twitter

Lazarus group exploits Windows IIS servers to distribute malware – CSO Online

When a system using a vulnerable version of INISAFE CrossWeb EX V6 visits this website via a web browser, the Lazarus malware (SCSKAppLink.dll) is …

Facebook Twitter

Researchers find Decoy Dog malware campaign likely linked to nation-state spying – Axios

Researchers at Infoblox released new details Tuesday about a malware campaign they're calling Decoy Dog.

Facebook Twitter

US Neutralizes Russian Snake Malware Program – Dialogo-Americas.com

A coalition of U.S. security agencies dismantled Russia's global Snake Malware network, considered “the most sophisticated cyber espionage tool …

Facebook Twitter

Decoy Dog is No Ordinary Pupy – Infoblox Reveals Shift in Malware Tactics After Initial Discovery

The malware uses DNS to establish command and control (C2) and is suspected as a secret tool used in ongoing nation-state cyber attacks.

Facebook Twitter

Barbie malware: India among top five countries facing attacks, says McAfee research

McAfee, which works in the online malware protection market, urges consumers to exercise caution as Barbie-related malware attacks rise.

Facebook Twitter

Security experts sniffing around dangerous new malware Decoy Dog – Cybernews

New malware is suspected to be a secret tool used in ongoing nation-state cyber-attacks, utilizing DNS to establish command and control.

Facebook Twitter

Decoy Dog Malware Upgraded to Include New Features – Infosecurity Magazine

To support further investigation of the malware's C2 systems, Infoblox has released a new dataset containing DNS traffic captured from their servers.

Facebook Twitter