Russian cyber spies hide behind other hackers to target Ukraine

December 12, 2024 at 11:09AM Russian cyber-espionage group Turla is leveraging other threat actors’ infrastructure, specifically targeting Ukrainian military devices via Starlink. Utilizing malware from the Amadey botnet and other sources, Turla deploys custom malware like Tavdig and KazuarV2 to gather intelligence and perform reconnaissance on compromised systems. Microsoft recently highlighted these activities. ### Key … Read more

Socks5Systemz proxy service infects 10,000 systems worldwide

November 5, 2023 at 10:40AM A proxy botnet known as ‘Socks5Systemz’ is infecting computers worldwide through malware loaders. It has infected 10,000 devices so far. The malware turns infected computers into traffic-forwarding proxies for malicious or anonymous traffic, which it sells to subscribers for a fee ranging from $1 to $140 per day in cryptocurrency. … Read more

‘Etherhiding’ Blockchain Technique Hides Malicious Code in WordPress Sites

October 17, 2023 at 01:11PM Attackers have been using proprietary blockchain technology to conceal malicious code in a campaign involving fake browser updates. The campaign, called ClearFake, tricks users into downloading fake browser updates from compromised WordPress sites. The attackers use a technique called “EtherHiding” to host malicious code on Binance Smart Chain contracts, making … Read more