Malware & Threats Takedown of GitHub Repositories Disrupts RedLine Malware Operations Four GitHub repositories used by RedLine stealer control panels were suspended, disrupting the malware’s operations. Ionut ArghireApril 18, 2023
Malware & Threats New ‘Domino’ Malware Linked to FIN7 Group, Ex-Conti Members New Domino backdoor brings together former members of the Conti group and the FIN7 threat actors. Ionut ArghireApril 18, 2023
Malware & Threats Microsoft Warns Accounting, Tax Return Preparation Firms of Remcos RAT Attacks A new Remcos RAT campaign is targeting US accounting and tax return preparation firms as Tax Day approaches. Ionut ArghireApril 14, 2023
Malware & Threats Mandiant Also Links 3CX Supply Chain Attack to North Korean Hackers 3CX has confirmed previous reports that the recently disclosed supply chain attack was likely conducted by North Korean hackers. Eduard KovacsApril 12, 2023
Malware & Threats Tax Return Filing Service eFile.com Caught Serving Malware Online tax return filing service eFile.com was injected with malicious JavaScript code serving malware to visitors. Ionut ArghireApril 5, 2023
Malware & Threats Adobe Acrobat Sign Abused to Distribute Malware Cybercriminals are abusing the Adobe Acrobat Sign service in a campaign distributing the RedLine information stealer malware. Ionut ArghireMarch 20, 2023
Malware & Threats New ‘Exfiltrator-22’ Post-Exploitation Framework Linked to Former LockBit Affiliates A recently identified post-exploitation framework ‘Exfiltrator-22’ uses the same C&C infrastructure as the LockBit ransomware. Ionut ArghireFebruary 28, 2023