Attackers Spread Cobalt Strike Through Backdoor in Common Apps

Researchers discovered a new attack campaign targeting online gambling companies in China with one of two malware payloads. In one scenario detected by Trend Micro, the campaign dropped a previously undocumented backdoor written in Python. The security firm dubbed this threat ‘BIOPASS RAT’ (for remote access Trojan). In addition, they discovered it was spread in conjunction with the Cobalt Strike malware. Read on to learn about a unique attempt that BIOPASS uses to sniff a victim’s screen.
Picture for Attackers Spread Cobalt Strike Through Backdoor in Common Apps

How APTs become long-term lurkers: Tools and techniques of a targeted attack

Detecting compromises by highly skilled attackers is no easy task, requiring advanced network traffic monitoring, behavioral analysis of endpoint logs, and even dedicated threat hunting teams that manually search for signs of compromise by imitating attackers. This is highlighted in a new McAfee report about a long-term compromise discovered on a customer network that started out as a simple malware infection investigation.

DDoS Attacks: A Flourishing Business for Cybercrooks – Podcast

Imperva’s Peter Klimek on how DDoS attacks started out as inconveniences but evolved to the point where attackers can disrupt businesses for as little as the price of a cup of coffee,. Distributed denial-of-service (DDoS) started out as an inconvenience: They were a roadblock that kept customers from getting at...

McAfee Finds Years-Long Attack by Chinese-Linked APT Groups

An investigation by McAfee researchers into a case of a suspected malware infection uncovered a cyber attack that had been sitting in the victim organization’s network for years stealing data. The investigators said the advanced threat actors used a mixture of known and unique malware tools in the attack –...
Beta News

Manufacturing data at risk from over exposure

Data security company Varonis has released research based on an analysis of four billion files across 50 organisations in the manufacturing industry and finds that there’s a huge problem of overexposure of data in the sector. Every employee can access, on average, six million files on their first day on...

CVE-2021-40444 exploitation: Researchers find connections to previous attacks

The recent targeted attacks exploiting the (at the time) zero-day remote code execution vulnerability (CVE-2021-40444) in Windows via booby-trapped Office documents have been delivering custom Cobalt Strike payloads, Microsoft and Microsoft-owned RiskIQ have shared. The researchers also found connections between the attackers’ exploit delivery infrastructure and an infrastructure previously used...

Two killed in IS attacks in Iraq

Baghdad [Iraq], September 16 (ANI/Xinhua): An Iraqi soldier and a civilian were killed, and three members of paramilitary Hashd Shaabi forces were wounded on Wednesday in separate attacks by the terrorists of the Islamic State (IS) group in Iraq, security sources said. One of the attacks took place in the...

RANE Insights on Security: The Behavioral Attributes of Attackers

Introductory Offer: Subscribe & Save on your first year!. Introductory 12-month offer for new and eligible returning subscribers only. In this episode of RANE's podcast series, Insights on Security with Brian W. Lynch, the topic is behavioral attributes of the criminal or terrorist groups that carry out attacks and how corporate security departments can manage the risks. Brian speaks to Kevin Kelm, president of Arson & Bombing Behavioral Analysis.

Marine vet stabbed in the eye while defending woman from attackers

A recently retired U.S. Marine was hospitalized on Sunday after being stabbed in the eye while defending a woman from a group of attackers. Tyler Ferrara, 26, came to the defense of a woman who was being assaulted outside a bar near Winter Street in Worcester, Mass., his brother Matt Ferrara told WCVB-5.

Cybercriminals Use Pandemic To Attack Schools and Colleges, Two Texas Schools Pay Over Half A Million in Ransom

Cyberattacks have hit schools and colleges harder than any other industry during the pandemic. In 2020, including the costs of downtime, repairs and lost opportunities, the average ransomware attack cost educational institutions $2.73 million. That is $300,000 more than the next-highest sector – distributors and transportation companies. From Aug. 14...

Attackers Impersonate DoT in Two-Day Phishing Scam

Threat actors dangled the lure of receiving funds from the $1 trillion infrastructure bill and created new domains mimicking the real federal site. Threat actors impersonated the U.S. Department of Transportation (USDOT) in a two-day phishing campaign that used a combination of tactics – including creating new domains that mimic federal sites so as to appear to be legitimate – to evade security detections.

Five Strategies for Addressing DDoS Attacks

Due to the COVID crisis, 2020 has been a year of unparalleled change and uncertainty for business. However, one constant is the threat of a cyber-attack on any company, at any time. The pandemic created a seismic shift in how people work and live, accelerating the rise of DDoS attacks.

Horrifying moment machete thugs attacked rival on busy road

This is the horrifying moment violent thugs wielding machetes and hammers attacked a man at a busy road in Birmingham. Dashcam footage shared on Twitter shows two men wildly swinging their weapons at a third man at around 4.20pm last Saturday. As he tries to flee from the attackers, the...