September 26, 2024 at 05:32PM Unit 42 researchers discovered a new variant of the RomCom malware, named SnipBot, used in attacks targeting diverse sectors to steal data and pivot on networks. It employs an extended set of 27 commands for data exfiltration and evades sandboxes through various techniques. Initial vectors include phishing emails and fake … Read more
August 20, 2024 at 02:22AM Cybersecurity researchers have reported ongoing attacks by Blind Eagle, an adaptable threat actor targeting entities and individuals in Latin American nations. The group employs spear-phishing tactics, geographical redirection, and process injection techniques to distribute trojans like AsyncRAT and NjRAT, enabling cyber espionage and financial credential theft campaigns. Kaspersky warns of … Read more
April 17, 2024 at 06:07AM The Sandworm hacker group, APT44, has been supporting Russian military objectives in Ukraine while expanding cyberthreat operations globally. Mandiant’s analysis found Sandworm to be integrated with Russia’s GRU, potent in cyberattacks, and broad in its global targeting. Sandworm has used CyberArmyofRussia_Reborn and focuses on espionage while using legitimate tools to … Read more