IT Sec News updates – Malware Attacks

January 13, 2024
NEWS

Water Pump Used To Get $1 Billion Stuxnet Malware Into Iranian Nuclear Facility – Slashdot

… the now-infamous Stuxnet malware in an Iranian nuclear facility, according to a two-year investigation conducted by Dutch newspaper De Volkskrant. …

Facebook Twitter

AgentTesla Malware Attack Windows Machine Steal Sensitive Data – GBHackers

Recently the cybersecurity researchers at Bitsight Security discovered that AgentTesla malware has been actively attacking Windows machines.

Facebook Twitter

Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout

In its analysis, Mandiant describes five malware families deployed by the hackers. The custom malware observed in the attacks is tracked by Mandiant …

Facebook Twitter

Updated Atomic Stealer malware emerges | SC Media

Several updates have been introduced to the Atomic Stealer macOS information-stealing malware, also known as AMOS, including the integration of …

Facebook Twitter

Ivanti Connect Secure zero-days exploited to deploy custom malware – Bleeping Computer

Deployed malware · Zipline Passive Backdoor: custom malware that can intercept network traffic, supports upload/download operations, creating reverse …

Facebook Twitter

Miscreants absolutely love using GitHub to sling malware – The Register

GitHub, the report says, presents several advantages to malware authors. For example, GitHub domains are seldom blocked by corporate networks, making …

Facebook Twitter

Ivanti Connect Secure attacks part of deliberate espionage operation – Cybersecurity Dive

Researchers warn the previously unknown actor has developed custom malware designed to maintain persistent access on targeted networks and evade …

Facebook Twitter

Qbot Malware Via FakeUpdates Leads the Race of Malware Attacks – GBHackers

Previously distributed Qakbot malware campaign was capable of monitoring the browsing activities of the infected computer and logs all information …

Facebook Twitter

Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout

Mandiant identified the threat actor as UNC5221, and the likely goal appears to be espionage. The attackers have used five malware families, including …

Facebook Twitter

CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign

The malware utilizes multiple techniques to evade detection and complicate reverse engineering, such as API hashing and string encryption.

Facebook Twitter