Remcos RAT Spreading Through Adult Games in New Attack Wave

January 16, 2024 at 08:33AM The Remcos RAT, disguised as adult-themed games, is being distributed in South Korea through webhards. This sophisticated remote access trojan allows threat actors to unauthorizedly control and surveil compromised hosts, exfiltrating sensitive information. Originally marketed as a remote administration tool, it has evolved into a potent weapon for infiltrating systems … Read more

Claroty Welcomes Former US National Cyber Director Chris Inglis to Advisory Board

January 11, 2024 at 01:44PM Chris Inglis, former U.S. National Cyber Director, joins Claroty’s advisory board to enhance the company’s mission of safeguarding critical global infrastructure. His vast expertise in cybersecurity and national defense, spanning military, civilian, and government roles, will drive innovation in security solutions. CEO Yaniv Vardi emphasizes Inglis’s invaluable government insights for … Read more

Zero Networks Raises $20 Million to Secure Access to Enterprise Assets

December 13, 2023 at 08:30AM Zero Networks, a zero trust identity and network security solutions provider, has secured $20 million in a Series B funding round, bringing the total raised to $45 million. US Venture Partners led the investment with contributions from CyberArk, F2 Capital, Pico Venture Partners, Venrock, and angel investors. The Israeli startup … Read more

Hackers breach healthcare orgs via ScreenConnect remote access

November 10, 2023 at 02:59PM Hackers have been targeting healthcare organizations in the U.S. by abusing the ScreenConnect remote access tool. The attacks involve installing additional remote access tools to ensure persistent access to the environments. The attacks were observed between October 28 and November 8, 2023, and the same actor is behind all incidents. … Read more

Quasar RAT Leverages DLL Side-Loading to Fly Under the Radar

October 23, 2023 at 02:09PM The Quasar RAT malware is using DLL side-loading to steal data from compromised Windows hosts. The malware disguises itself as legitimate files, such as ctfmon.exe and calc.exe, to avoid detection. It can gather system information, execute commands, and establish remote access. The attack vector is likely phishing emails. Stay vigilant … Read more

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability

October 18, 2023 at 07:00AM Tens of thousands of Cisco devices have been hacked through a newly disclosed zero-day vulnerability, CVE-2023-20198. Cisco is working on a patch, but in the meantime, customers are advised to implement mitigations. The vulnerability allows attackers to gain elevated privileges and complete control over targeted systems. Cybersecurity companies have observed … Read more