Day: February 27, 2023
Researchers Share New Insights Into RIG Exploit Kit Malware’s Operations
27 February 2023The RIG exploit kit (EK) touched an all-time high successful exploitation rate of nearly 30% in 2022, new findings reveal. “RIG EK is a financially-motivated program that has been active since 2014,” Swiss cybersecurity company PRODAFT said in an exhaustive report shared with The Hacker News. “Although it has yet to substantially change its exploits […]
Read More
Shocking Findings from the 2023 Third-Party App Access Report
27 February 2023Spoiler Alert: Organizations with 10,000 SaaS users that use M365 and Google Workspace average over 4,371 additional connected apps. SaaS-to-SaaS (third-party) app installations are growing nonstop at organizations around the world. When an employee needs an additional app to increase their efficiency or productivity, they rarely think twice before installing. Most employees don’t even realize […]
Read More
ChromeLoader Malware Targeting Gamers via Fake Nintendo and Steam Game Hacks
27 February 2023Feb 27, 2023Ravie LakshmananBrowser Security / Malware A new ChromeLoader malware campaign has been observed being distributed via virtual hard disk (VHD) files, marking a deviation from the ISO optical disc image format. “These VHD files are being distributed with filenames that make them appear like either hacks or cracks for Nintendo and Steam games,” […]
Read More
PureCrypter Malware Targets Government Entities in Asia-Pacific and North America
27 February 2023Feb 27, 2023Ravie LakshmananRansomware / Cyber Attack Government entities in Asia-Pacific and North America are being targeted by an unknown threat actor with an off-the-shelf malware downloader known as PureCrypter to deliver an array of information stealers and ransomware. “The PureCrypter campaign uses the domain of a compromised non-profit organization as a command-and-control (C2) to […]
Read More
PlugX Trojan Disguised as Legitimate Windows Debugger Tool in Latest Attacks
27 February 2023Feb 27, 2023Ravie LakshmananMalware / Cyber Attack The PlugX remote access trojan has been observed masquerading as an open source Windows debugger tool called x64dbg in an attempt to circumvent security protections and gain control of a target system. “This file is a legitimate open-source debugger tool for Windows that is generally used to examine […]
Read More
Dutch Police Arrest 3 Hackers Involved in Massive Data Theft and Extortion Scheme
27 February 2023Feb 27, 2023Ravie Lakshmanan The Dutch police announced the arrest of three individuals in connection with a “large-scale” criminal operation involving data theft, extortion, and money laundering. The suspects include two 21-year-old men from Zandvoort and Rotterdam and an 18-year-old man without a permanent residence. The arrests were made on January 23, 2023. It’s estimated […]
Read More