ROKRAT Detection: Malware Adopts New Deployment Methods Relying on Large LNK Files
Adversaries are constantly looking for novel ways to overcome security protections. After Microsoft started blocking macros for Office documents by…
Threats
WinRAR as Cyberweapon: UAC-0165 Targets Ukrainian Public Sector with RoarBat
Since the outbreak of the global cyber war, state bodies of Ukraine and its allies have become targets of diverse…
APT28 aka UAC-0001 Group Leverages Phishing Emails Disguised As Instructions for OS Updates Targeting Ukrainian State Bodies
The infamous russian nation-backed hacking collective tracked as APT28 or UAC-0001, which has a history of targeted attacks against Ukrainian…
CVE-2023-27524 Detection: New Vulnerability Exposes Thousands of Apache Superset Servers to RCE Attacks
The popular open-source data visualization and data exploration tool, Apache Superset, is claimed to be vulnerable to authentication bypass and…
CVE-2023-27350 Exploit Detection: Critical PaperCut RCE Vulnerability Added to the CISA’s Known Exploited Vulnerabilities Catalog
PaperCut has recently reported that the company’s application servers are vulnerable to a critical RCE flaw known as CVE-2023-27350, with…
Domino Malware Detection: Ex-Conti and FIN7 Threat Actors Collaborate to Spread a New Backdoor
Cybersecurity researchers have uncovered a new malware family called Domino attributed to the adversary activity of the financially motivated russia-backed…
Lazarus Hacker Group Shifts Targets and Applies Advanced Techniques in a New DeathNote Campaign
The notorious North Korean hacking collective Lazarus Group, also tracked as APT38, Dark Seoul, or Hidden Cobra, has earned its…
GuLoader Detection: Malware Targets U.S. Financial Organizations via Phishing Emails
With the tax season in full swing, threat actors are setting eyes on financial organizations. According to the latest cybersecurity…
Detect CVE-2023-28252 & CVE-2023-21554 Exploitation Attempts: Windows Zero-Day Actively Used in Ransomware Attacks and a Critical RCE Flaw
With a growing number of zero-day flaws affecting widely used software products, proactive detection of vulnerability exploitation has been among…
DarkCrystal RAT Malware Detection: UAC-0145 Hackers Exploit Unlicensed Microsoft Office Software as the Initial Attack Vector
With a 250% surge of cyber attacks against Ukraine in 2022 and over 2,000 of them launched by russia-affiliated threat…