Malicious Software Infrastructure Easier to Get and Deploy Than Ever
Simple to use and deploy offensive security tools, making it easier than ever for criminals with little technical know-how to get in on …
C2
Sunburst’s C2 Secrets Reveal Second-Stage SolarWinds Victims
More information has come to light about the Sunburst backdoor that could help defenders get a better handle on the scope of the sprawling …
Magecart Credit-Card Skimmer Adds Telegram as C2 Channel
The e-commerce card-skimming landscape has a new wrinkle: Cybercriminals affiliated with the Magecart collective are using encrypted …
NSA, FBI Warn of Linux Malware Used in Espionage Attacks
The U.S. government is warning of new malware, dubbed Drovorub, that targets Linux …
Going Down the Spyware Rabbit Hole with SilkBean Mobile Malware
In this in-depth Threatpost podcast Christoph Hebeisen, who leads the Security Intelligence Research Division at Lookout, shares a …
Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature
April 24, 2012 – The fight against malware is a cat-and-mouse game. It is constant and constantly …
Russian Turla APT Group Hacked Iranian APT C2 Server For Backdoor Access To Expand The Cyber Attack
Hackers-Hack-Hackers: Russian APT group Turla known as Waterbug compromised the Iranian hacker’s command and control server …
Russian Turla APT Group Hacked Iranian APT Group C2 Server For Backdoor Access To Expand The Attack
Hackers-Hack-Hackers: Russian APT group Turla known as Waterbug compromised the Iranian hacker’s command and control server …
Hackers Drop Spyware and Steal the Password, Credit card and Browers Data Using Telegram as a C2 Server
Researchers discovered a new trojan Masad Stealer to deliver the powerful spyware on the targeted systems and exfiltrate the stolen data …
Masad Spyware Uses Telegram Bots for Command-and-Control
A freshly discovered commercial spyware dubbed the “Masad Clipper and Stealer” is using Telegram bots as its command-and-control (C2) …
Panda Threat Group Mines for Monero With Updated Payload, Targets
The Panda threat group, best known for launching the widespread and successful 2018 “MassMiner” cryptomining malware campaign, has …
Hackers using Facebook and YouTube Profiles to Host Astaroth Malware C2 Server
Cybercriminals abusing Facebook and YouTube profiles to host the Astaroth malware that launches through sophisticated phishing campaign to …