#RemoteManagement

Iranian Cyber Threat Group Drops New Backdoor, ‘BugSleep’

by

July 18, 2024 at 02:06AM MuddyWater, an Iranian cyber-espionage group, has shifted from using legitimate remote management software to deploying a custom backdoor implant known as BugSleep. This shift was prompted by the ineffectiveness of their previous approach. The group’s tactics involve phishing, deploying malicious PDFs, and targeting various government and critical industries in the … Read more

Microsoft Quick Assist Tool Abused for Ransomware Delivery

by

May 17, 2024 at 07:48AM Cybercriminals using the Black Basta ransomware have abused the Quick Assist remote management tool in vishing attacks. Active since 2022, Black Basta has targeted over 500 organizations worldwide, inflicting over $100 million in ransom payments. Microsoft warns of these attacks on critical infrastructure and is incorporating alerts to combat tech … Read more