#PhishingLinks

‘Stargazer Goblin’ Amasses Rogue GitHub Accounts to Spread Malware

by

July 24, 2024 at 04:38PM A threat actor named “Stargazer Goblin” is using a new tactic to distribute malware by leveraging GitHub. They use a large network of inauthentic accounts to make malicious repositories appear legitimate. The operation involves starring, forking, and subscribing to the repositories to make them seem credible. The group also distributes … Read more

Kasseika Ransomware Deploys BYOVD Attacks, Abuses PsExec and Exploits Martini Driver 

by

January 23, 2024 at 03:14AM The Kasseika ransomware group has been observed deploying BYOVD attacks, utilizing PsExec and exploiting Martini driver. It is suggested that the group may have acquired access to the source code of BlackMatter ransomware. The attack chain involves targeted phishing for initial access followed by remote administration tools and defense evasion … Read more