Free Phone Consultation For New Clients | CONTACT NOW

ALL YOUR IT. SIMPLIFIED.

Cybersecurity for middle market operations

Blog

Your inside look at what's on our mind...

BlackCat Ransomware Deploys New Signed Kernel Driver

Qakbot C2s

OilAlpha: A Likely Pro-Houthi Group Targeting Entities Across the Arabian Peninsula

The distinctive rattle of APT SideWinder

AndoryuBot’s DDOS Rampage

BianLian Ransomware Group

Fake system update drops Aurora stealer via Invalid Printer loader

Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites

AuKill EDR killer malware abuses Process Explorer driver

SideWinder Uses Server-side Polymorphism to Attack Pakistan Government Officials — and Is Now Targeting Turkey

Threat Assessment: Royal Ransomware

Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram

BlackBit Ransomware: A Threat from the Shadows of LokiLocker

New KEKW Malware Variant Identified in PyPI Package Distribution

Raspberry Robin: A global USB malware campaign providing access to ransomware operators

1877 Team: A Kurdish hacker group on the rise

Tonto Team Using Anti-Malware Related Files for DLL Side-Loading

FIN7 tradecraft seen in attacks against Veeam backup servers

Magecart threat actor rolls out convincing modal forms

Chinese Alloy Taurus Updates PingPull Malware

RokRAT Malware Distributed Through LNK Files

Threat Actors Rapidly Adopt Web3 IPFS Technology

Play Ransomware Group Using New Custom Data-Gathering Tools

CrossLock Ransomware Emerges: New GoLang-Based Malware On the Horizon

Tracking MuddyWater’s infrastructure

LockBit for Mac | How Real is the Risk of macOS Ransomware?

Transparent Tribe (APT36) | Pakistan-Aligned Threat Actor Expands Interest in Indian Education Sector

Malware Disguised as Document from Ukraine's Energoatom Delivers Havoc Demon Backdoor

Money Ransomware: The Latest Double Extortion Group

Threat Actor Spotlight: RagnarLocker Ransomware

Bitter Group distributes CHM malware to Chinese institutions

CryptoClippy Speaks Portuguese

Technical analysis of the Genesis Market and Middot

New Indicators of Compromise (IOCs) Discovered for Windows and Linux-based Backdoor Malware KEYPLUG

Mac Malware MacStealer Spreads as Fake P2E Apps

Spyware vendors use 0-days and n-days against popular platforms

Winter Vivern Uses Known Zimbra Vulnerability to Target Webmail Portals of NATO-Aligned Governments in Europe

APT43: North Korean Group Uses Cybercrime to Fund Espionage Operations

DBatLoader Actively Distributing Malwares Targeting Europea

LimeRAT Malware Analysis: Extracting the Configuration

CrowdStrike Falcon Platform Detects and Prevents Active Intrusion Campaign Targeting 3CXDesktopApp Customers

New Kritec Magecart skimmer found on Magento stores

Operation Tainted Love | Chinese APTs Target Telcos in New Attacks

Cinoshi Project and the Dark Side of Free MaaS

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

A look at a Magecart skimmer using the Hunter obfuscator

Winter Vivern | Uncovering a Wave of Global Espionage

South Korean Android Banking Menace – FakeCalls

CHM Malware Disguised as North Korea-related Questionnaire (Kimsuky)

Emotet Returns, Now Adopts Binary Padding for Evasion

BatLoader Continues to Abuse Google Search Ads

Nevada Ransomware: Yet Another Nokayawa Variant

Prometei botnet improves modules and exhibits new capabilities in recent updates

DeepStreamer: Illegal Movie Streaming Platforms Hide Lucrative Ad Fraud Operation

BlackSnake Ransomware Emerges from Chaos Ransomware’s Shadow

Malvertising In Google Search Results Delivering Stealers

Redis Miner Leverages Command Line File Hosting Service

MQsTTang: Mustang Panda’s latest backdoor treads new ground with Qt and MQTT

Active hoze mining Trojan analysis

Kaiji Botnet Resurfaces, Unmasking Ares Hacking Group?

Lumma Stealer targets YouTubers via Spear-phishing Email

Beware of macOS cryptojacking malware.

Clasiopa: New Group Targets Materials Research

The Growing Threat of ChatGPT-Based Phishing Attacks

Cyber attack of the group UAC-0050 using the Remcos program.

Andoryu Botnet. A New Botnet Based on Socks Protocol

ProxyShellMiner Campaign Creating Dangerous Backdoors

Mirai Variant V3G4 Targets IoT Devices

Frebniis: New Malware Abuses Microsoft IIS Feature to Establish Backdoor

Threat Actors Abuse Cloud Infrastructure in Targeted Telco Attacks

Recent TZW Campaigns Revealed As Part of GlobeImposter Malware Family

NewsPenguin, a Previously Unknown Threat Actor, Targets Pakistan with Advanced Espionage Tool

Open-source repository malware sows Havoc

Investigating Intrusions From Intriguing Exploits

#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities | CISA

Enigma Stealer Targets Cryptocurrency Industry with Fake Jobs

OneNote Documents Increasingly Used to Deliver Malware

.NET Virtualization Thrives in Malvertising Attacks

Operation Ice Breaker Targets The Gam(bl)ing Industry Right Before It's Biggest Gathering

Google sponsored ads malvertising targets password manager

New data wipers deployed against Ukraine

New Mimic Ransomware Abuses Everything APIs for its Encryption Process

Chinese PlugX Malware Hidden in Your USB Devices?

DoNot Go! Do not respawn!

CryptBot Infostealer: Malware Analysis

Protecting Against Malicious Use of Remote Monitoring and Management Software

Earth Bogle: Campaigns Target the Middle East with Geopolitical Lures

Hackers push malware via Google search ads for VLC, 7-Zip, CCleaner

Gigabud RAT: New Android RAT Masquerading as Government Agencies

DNS changer in malicious mobile app used by Roaming Mantis

Batloader Malware Abuses Legitimate Tools Uses Obfuscated JavaScript Files in Q4 2022 Attacks

Gootloader Malware Leads to Cobalt Strike and Hand-on-Keyboard Activity

Rhadamanthys: New Stealer Spreading Through Google Ads

NoName057(16) - The Pro-Russian Hacktivist Group Targeting NATO

NeedleDropper

Now this password-stealing Android malware wants to grab your bank details too

Suspected Russian hackers repurpose old malware to target Ukraine

Dridex banking malware modified to spread using macOS

ChatGPT is enabling script kiddies to write functional malware

Shc Linux Malware Installing CoinMiner