3CX Windows App Compromised in Supply Chain Attack

Two versions of the 3CX Windows electron app were compromised in a targeted supply chain attack, and researchers have connected it to a North Korean attack group.

Attackers Deploy New IcedID Variant

Two threat groups have been identified deploying a new variant of the IcedID malware, which often is seen in conjunction with Emotet.

LNK Files Link Bumblebee With Qakbot, IcedID Malware

By looking at metadata in LNK files in recent campaigns, Talos researchers have linked the Bumblebee malware with the Qakbot and IcedID malware groups.

New Chinese Cyberespionage Campaign Targets Asia, US

A newly discovered cyber espionage campaign from a Chinese threat actor is targeting Asian and US organizations with self-replicating malware called MISTCLOAK.

LodaRAT Malware Evolves With New Functionalities

New variants of the RAT reveal added functionalities and deployment alongside other malware families.