SEARCH
Archive
Qakbot Email Thread Hijacking Attacks Drop Multiple Payloads
Researchers have observed attackers leveraging email thread hijacking tactics to spread the Qakbot malware, which in turn deploys multiple payloads.
Online Contact Forms Used in BazarLoader Attacks
Threat actors are attempting to gain the trust of victims by pretending to be a potential customer and filling out an online contact form before launching the BazarLoader attack.
China-Linked Group Using New Daxin Backdoor
A China-linked threat actor is using a highly sophisticated backdoor called Daxin that implements its own communication protocol and has been deployed against military and critical infrastructure targets.
Revamped Anchor Malware Targets Windows Systems
Researchers believe that attackers behind the Anchor malware, the Trickbot gang, have ceased Trickbot operations are instead focusing on deploying stealthier versions of other malware families.
CISA Warns of Ongoing Attacks by MuddyWater APT
U.S. agencies are warning that the Iranian-backed APT group MuddyWater is targeting organizations in many industries in North America and elsewhere.