Threat Post

From PowerShell to Payload: An Analysis of Weaponized Malware

Click, and boom, your network is compromised. All a hacker needs is one successful exploit and you could have a very bad day. Recently we uncovered one artifact that we would like to break down and ...
Bleeping Computer

Hive ransomware uses new 'IPfuscation' trick to hide payload

Threat analysts have discovered a new obfuscation technique used by the Hive ransomware gang, which involves IPv4 addresses and a series of conversions that eventually lead to downloading a Cobalt ...
Bleeping Computer

New Linux malware evades detection using multi-stage deployment

A new stealthy Linux malware known as Shikitega has been discovered infecting computers and IoT devices with additional payloads. The malware exploits vulnerabilities to elevate its privileges, adds ...
IT World Canada

Linux malware uses multi-level deployment to bypass detection

AT&T researchers have discovered a new Linux malware that can bypass multi-stage deployment. The malware known as Shiketega can bypass antivirus by using a polymorphic encoder that makes static ...
IT World Canada

North Korean hackers deploys backdoor using trojanized PuTTY SSH client

North Korean hackers are using a trojanized version of the PuTTY and KiTTY SSH utility to install backdoors on targets’ devices. The attack begins with the threat actors sending phishing emails to ...
Threat Post

Nation-state Hackers Target Journalists with Goldbackdoor Malware

A campaign by APT37 used a sophisticated malware to steal information about sources , which appears to be a successor to Bluelight. Sophisticated hackers believed to be tied to the North Korean ...
TechRepublic

New CosmicStrand rootkit targets Gigabyte and ASUS motherboards

Malware exists in different flavors. Most of the time, malware consists of malicious files stored in computers operating systems, just like any other file, and running as software with or without high ...