Tag: rat

Rat der Verbraucherzentrale zur ePA: Entweder aktive Pflege oder grundsätzlicher Widerspruch

Jan 14, 2025 11:46 AM

Tags: rat

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/rat-verbraucherzentrale-epa-aktivitaet-pflege-grundsatz-widerspruch
New NonEuclid RAT Evades Antivirus and Encrypts Critical Files

Jan 10, 2025 1:18 PM

Tags: access, antivirus, cyber, detection, framework, malware, rat

A NonEuclid sophisticated C# Remote Access Trojan (RAT) designed for the.NET Framework 4.8 has been shown to pose a significant and ever-evolving cyber threat. The malware leverages a multifaceted approach to evade detection and maintain persistence, employing advanced techniques such as antivirus bypass, anti-detection mechanisms, anti-virtual machine checks, rootkit-like capabilities to conceal its presence, and…
Advanced evasion techniques leveraged by novel NonEuclid RAT

Jan 9, 2025 10:21 PM

Tags: rat

First seen on scworld.com Jump to article: www.scworld.com/brief/advanced-evasion-techniques-leveraged-by-novel-noneuclid-rat
Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Jan 8, 2025 3:18 PM

Tags: access, control, cybersecurity, malware, rat, windows

Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems.”The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques,” Cyfirma said in a technical analysis published last week.”It employs First…
Hackers Mimic Social Security Administration To Deliver ConnectWise RAT

Jan 7, 2025 4:19 PM

Tags: access, cyber, email, hacker, infrastructure, phishing, rat

A phishing campaign spoofing the United States Social Security Administration emerged in September 2024, delivering emails with embedded links to a ConnectWise Remote Access Trojan (RAT) installer. These emails, disguised as updated benefits statements, employed various techniques, including mismatched links and >>View Statement
Hackers Exploit Social Security Administration Branding to Deliver ConnectWise RAT

Jan 6, 2025 5:17 AM

Tags: exploit, hacker, phishing, rat, tactics

In a concerning escalation of phishing tactics, hackers are spoofing the United States Social Security Administration (SSA) to First seen on securityonline.info Jump to article: securityonline.info/hackers-exploit-social-security-administration-branding-to-deliver-connectwise-rat/
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 27

Jan 5, 2025 1:18 PM

Tags: exploit, international, malware, ransomware, rat, supply-chain, vulnerability, zero-day

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. 7-Zip Zero-Day Exploit Dropped: A New Playground for Infostealer & Supply Chain Attacks Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts The Mac Malware of 2024 Ransomware Vulnerability Matrix Inside…
PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps

Jan 4, 2025 10:17 AM

Tags: backdoor, cybersecurity, defense, google, malware, phishing, rat, tool, vpn

Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features like keylogging, screen capture, audio capture, remote shell, and file transfer/execution.The backdoor, according to Google’s Managed Defense team, shares functional overlaps with a known remote administration tool referred to as Gh0st RAT, which had its source First…
NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT

Jan 3, 2025 1:17 PM

Tags: access, malicious, open-source, rat, tool, vulnerability

Researchers discovered a malicious package on the npm package registry that resembles a library for Ethereum smart contract vulnerabilities but actually drops an open-source remote access trojan called Quasar RAT onto developer systems. First seen on hackread.com Jump to article: hackread.com/npm-package-disguised-ethereum-tool-quasar-rat/
NPM package poses as legit Ethereum smart contract, injects Quasar RAT

Jan 2, 2025 9:17 PM

Tags: rat

First seen on scworld.com Jump to article: www.scworld.com/news/npm-package-poses-as-legit-ethereum-smart-contract-injects-quasar-rat
Breach Roundup: MetLife Denies RansomHub Cyberattack Claims

Jan 2, 2025 8:21 PM

Tags: breach, cyberattack, espionage, germany, korea, north-korea, rat, russia, update

Also: German Prosecutors Charge Three Alleged Russian Saboteurs. This week, MetLife denied a RansomHub cyberattack claim, RI Health System cyberattack update, npm package deployed Quasar RAT, Germany charges three with espionage for Russia, North Korea’s contagious interview campaign deployed new malware. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-metlife-denies-ransomhub-cyberattack-claims-a-27199
Webcams and DVRs Vulnerable to HiatusRAT, FBI Warns

Dec 20, 2024 12:42 PM

Tags: cctv, malware, network, rat, vulnerability

The FBI has issued a warning about the Hiatus RAT malware targeting Xiongmai and Hikvision web cameras and DVRs, urging users isolate these devices from networks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/webcams-vulnerable-hiatusrat-fbi/
Neue Angriffskette von TA397 verbreitet Spionage-RATs

Dec 18, 2024 7:42 AM

Tags: apt, cyberattack, rat

Die Security-Experten von Proofpoint haben einen neuen Angriff der APT-Gruppe TA397 (auch unter dem Namen ‘Bitter” bekannt) näher analysiert. Die untersuchte Attacke richtete sich gegen eine Organisation aus der türkischen Rüstungsbranche und fand im November 2024 statt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/neue-angriffskette-von-ta397-verbreitet-spionage-rats
Microsoft Teams Vishing Spreads DarkGate RAT

Dec 16, 2024 8:44 PM

Tags: attack, email, malware, microsoft, phishing, rat, threat

A thwarted attack demonstrates that threat actors using yet another delivery method for the malware, which already has been spread using phishing emails, malvertising, hijacking of instant messages, and SEO poisoning. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/vishing-via-microsoft-teams-spreads-darkgate-rat
Remcos RAT Malware Evolves with New Techniques

Dec 12, 2024 6:05 PM

Tags: attack, control, cyber, data, espionage, malware, rat

Cyber-attacks involving Remcos RAT surged in Q3 2024, enabling attackers to control victim machines remotely, steal data and carry out espionage First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/remcos-rat-malware-evolves-new/
Hackers Target Android Users via WhatsApp to Steal Sensitive Data

Dec 10, 2024 9:07 AM

Tags: android, cyber, data, group, hacker, malicious, rat, threat

Researchers analyzed a malicious Android sample created using Spynote RAT, targeting high-value assets in Southern Asia, which, likely deployed by an unknown threat actor, aims to compromise sensitive information. Although the target’s precise location and nature have not been disclosed, its high-value nature suggests that advanced persistent threat (APT) groups may be interested in it. …
SpyNote RAT Targets High-Value Individuals in Southern Asia

Dec 10, 2024 5:07 AM

Tags: cyberattack, cybersecurity, malicious, rat, threat, tool

Cybersecurity researchers at CYFIRMA have uncovered a sophisticated cyberattack targeting high-value individuals in Southern Asia. Leveraging the SpyNote Remote Administration Tool (RAT), an unknown threat actor designed a malicious Android... First seen on securityonline.info Jump to article: securityonline.info/spynote-rat-targets-high-value-individuals-in-southern-asia/
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 23

Dec 8, 2024 3:07 PM

Tags: attack, exploit, fraud, international, linux, malware, rat

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. SmokeLoader Attack Targets Companies in Taiwan LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT DroidBot: Insights from a new Turkish MaaS fraud operation RedLine, A […]…
New DroidBot Android Spyware Targeting Banking and Crypto Users

Dec 7, 2024 10:07 PM

Tags: android, banking, crypto, finance, rat, spyware

DroidBot, a sophisticated Android RAT, is targeting individuals and financial institutions across Europe. First seen on hackread.com Jump to article: hackread.com/droidbot-android-spyware-hit-banking-crypto-users/
Neue EU-Gesetze zur Cyberabwehr

Dec 6, 2024 3:49 PM

Tags: ai, ciso, cyber, cyersecurity, infrastructure, rat, vulnerability
This $3,000 Android Trojan Targeting Banks and Cryptocurrency Exchanges

Dec 5, 2024 5:48 PM

Tags: access, android, attack, banking, crypto, finance, monitoring, rat, spyware

As many as 77 banking institutions, cryptocurrency exchanges, and national organizations have become the target of a newly discovered Android remote access trojan (RAT) called DroidBot.”DroidBot is a modern RAT that combines hidden VNC and overlay attack techniques with spyware-like capabilities, such as keylogging and user interface monitoring,” Cleafy researchers Simone Mattia, Alessandro First seen…
FBI-Tipps zum persönlichen Schutz vor KI-Angriffen

Dec 5, 2024 4:48 PM

Tags: ai, cyberattack, deep-fake, fraud, phishing, rat, social-engineering
Is the tide turning on macOS security?

Dec 5, 2024 7:48 AM

Tags: access, adware, ai, antivirus, apple, attack, chatgpt, computer, control, cybercrime, cybersecurity, dark-web, data, detection, endpoint, exploit, extortion, guide, hacker, macOS, malware, privacy, rat, service, skills, social-engineering, software, theft, threat, tool, update

The Apple ecosystem has been recognized for years by users and cybersecurity experts as among the most secure, offering flagship security features and a high level of user privacy protection.But macOS security may be experiencing a turning point in 2024, as experts point to a sharp increase in malware created specifically to target the operating system, as well…
Widespread RAT compromise via bogus emails, JavaScript payloads detailed

Dec 4, 2024 9:48 PM

Tags: email, rat

First seen on scworld.com Jump to article: www.scworld.com/brief/widespread-rat-compromise-via-bogus-emails-javascript-payloads-detailed
‘Horns&Hooves’ Malware Campaign Hits Over 1,000 Victims

Dec 3, 2024 11:48 PM

Tags: access, kaspersky, malware, rat, russia, service, threat, tool

Russian Threat Actor Delivers NetSupport RAT, BurnsRAT via Fake Requests. A malware campaign targeting Russian retailers and service businesses aims to deploy remote access tools and install infostealer malware. Kaspersky dubbed the campaign Horns&Hooves, after a fake organization set up by fraudsters in the 1931 Soviet satirical novel The Little Golden Calf. First seen on…
ElizaRAT Exploits Google, Telegram, Slack Services For C2 Communications

Dec 3, 2024 9:50 AM

Tags: android, attack, communications, cyber, espionage, exploit, google, government, group, india, linux, military, rat, service, tactics, windows

APT36, a Pakistani cyber-espionage group, has recently upgraded its arsenal with ElizaRAT, a sophisticated Windows RAT that, initially detected in 2023, employs advanced evasion tactics and robust C2 capabilities to target Indian government agencies, diplomatic personnel, and military installations. The group leverages multiple platforms, including Windows, Linux, and Android, to broaden its attack surface as…
Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads

Dec 3, 2024 7:48 AM

Tags: access, attack, email, kaspersky, malware, rat, russia, service

A newly discovered malware campaign has been found to target private users, retailers, and service businesses mainly located in Russia to deliver NetSupport RAT and BurnsRAT.The campaign, dubbed Horns&Hooves by Kaspersky, has hit more than 1,000 victims since it began around March 2023. The end goal of these attacks is to leverage the access afforded…
Check Point entdeckt neue Verbreitungsmethode von RAT Remcos

Dec 1, 2024 7:27 PM

Tags: ransomware, rat

Check Points Ransomware Index beleuchtet Erkenntnisse von sogenannten Ransomware Shame Sites. Diese werden von Ransomware-Gruppen betrieben, die mit D… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-entdeckt-neue-verbreitungsmethode-von-rat-remcos/a37059/
Check Point deckt Android-Malware Rafel RAT auf

Dec 1, 2024 6:27 PM

Tags: android, malware, rat

Die Entdeckung von Rafel RAT zeigt, wie vielseitig und gefährlich Android-Malware sein kann und unterstreicht die Notwendigkeit ständiger Wachsamkeit … First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-deckt-android-malware-rafel-rat-auf/a37641/
Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT

Dec 1, 2024 3:19 AM

Tags: government, india, rat

ntroduction APT36, also known as Transparent Tribe, is a Pakistan-basedthreat actor notorious for persistently targeting Indian government organizatio… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/the-evolution-of-transparent-tribes-new-malware/