The Rhysida ransomware gang, known for targeting enterprises, has shifted to using malvertising campaigns to spread its malware. In its recent campaigns, the threat actor has impersonated fake download pages mimicking legitimate software such as Microsoft Teams, PuTTY and Zoom. Rhysida group is deploying a malvertising technique to attack. The group purchases Bing search engine…
Category: Hacker Groups, Malware, Security
Global Security News, Hacker Groups, Malware, Security
BlueNoroff reemerges with new campaigns for crypto theft and espionage
North Korea-aligned threat actor BlueNoroff, also known under aliases APT38 and TA444, has resurfaced with two new campaigns dubbed “GhostCall” and “GhostHire,” targeting executives, Web3 developers, and blockchain professionals. According to Kaspersky’s Securelist researchers, the campaigns rely on social engineering via platforms like Telegram and LinkedIn to send fake meeting invites and eventually deliver multi-stage…
Exploits, Global Security News, Hacker Groups, Malware, Security
Russian APT28 hackers have redoubled efforts during Ukraine war, says French security agency
The war in Ukraine has prompted a resurgence in activity by the notorious Russian APT28/Fancy Bear group, the French ANSSI cybersecurity agency has said. According to a brief report published by the agency this week, Targeting and Compromise of French Entities Using the APT28 Intrusion Set, the group now aggressively targets the networks of government…
Global Security News, Hacker Groups, Malware, Security
Lazarus Group tricks job seekers on LinkedIn with crypto-stealer
North Korea-linked Lazarus Group is duping job seekers and professionals in an ongoing campaign that runs a LinkedIn recruiting scam to capture browser credentials, steal crypto wallet data, and launch persistence. According to a discovery made by BitDefender Labs, threat actors reach out with fake LinkedIn job offers to lure the victims into downloading and…