Tag: PowerShell
Octo Tempest Group Threatens Physical Violence as Social Engineering Tactic
The financially motivated hacking group Octo Tempest, responsible for attacking MGM Resorts International and Caesars Entertainment in September, has been branded "one of the...
Winter Vivern APT Blasts Webmail Zero-Day Bug With One-Click Exploit
Low-profile threat group Winter Vivern has been exploiting a zero-day flaw in Roundcube Webmail servers with a malicious email campaign targeting governmental organizations and...
Winter Vivern exploits zero-day vulnerability in Roundcube Webmail servers
ESET Research ESET Research recommends updating Roundcube Webmail to the latest available version as soon as possible Matthieu Faou 25 Oct 2023...
North Korean State Actors Attack Critical Bug in TeamCity Server
Two North Korean state-backed threat groups, whom Microsoft is tracking as Diamond Sleet and Onyx Sleet, are actively exploiting CVE-2023-42793, a critical remote code...
Patch Now: APTs Continue to Pummel WinRAR Bug
State-sponsored threat actors from Russia and China continue to throttle the remote code execution (RCE) WinRAR vulnerability in unpatched systems to deliver malware to...
Iran-Linked ‘MuddyWater’ Spies on Mideast Gov’t for 8 Months
The Iranian state-aligned advanced persistent threat (APT) known as MuddyWater used an arsenal of new custom malware tools to spy on an unnamed Middle Eastern...
Operation King TUT: The Universe of Threats in LATAM
ESET Research ESET researchers reveal a growing sophistication in threats affecting the LATAM region by employing evasion techniques and high-value targeting 17...
Feds: Beware AvosLocker Ransomware Attacks on Critical Infrastructure
US authorities issued a warning this week about potential cyberattacks against critical infrastructure from ransomware-as-a-service (RaaS) operation AvosLocker.In a joint security advisory, the Cybersecurity...
WatchGuard Threat Lab Report Finds Endpoint Malware Volumes Decreasing Despite Campaigns Growing More Expansive
PRESS RELEASESEATTLE – Oct. 4, 2023 – WatchGuard® Technologies, a global leader in unified cybersecurity, today announced the findings of its latest Internet Security Report, detailing...
Operation Jacana: Foundling hobbits in Guyana
In February 2023, ESET researchers detected a spearphishing campaign targeting a governmental entity in Guyana. While we haven’t been able to link the campaign,...
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company
ESET researchers have uncovered a Lazarus attack against an aerospace company in Spain, where the group deployed several tools, most notably a publicly undocumented...
5 of the most popular programming languages in cybersecurity
Secure Coding While far from all roles in security explicitly demand coding skills, it’s challenging to envision a career in this field that...