APT – Computer Security Articles

Kaspersky Security

Sandbox for experts

July 7, 2020 admin APT, Business, enterprise, Products, sandbox

Credit to Author: Hugh Aver| Date: Tue, 07 Jul 2020 16:11:48 +0000

We developed a sandbox capable of emulating a company-specific system in an isolated environment.

MalwareBytes Security

Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature

June 17, 2020 admin APT, c2, cobalt strike, malleable c2, malware, Threat analysis

Credit to Author: Threat Intelligence Team| Date: Wed, 17 Jun 2020 17:30:00 +0000

A newly discovered APT spear-phishing attack implements several evasion techniques to drop Cobalt Strike toolkit.

Categories:

Tags: APT C2 cobalt strike Malleable C2

Kaspersky Security

Which hacker group is attacking your corporate network? Don’t guess, check!

June 10, 2020 admin APT, attribution, Business, enterprise, solutions

Credit to Author: Eugene Kaspersky| Date: Wed, 10 Jun 2020 15:59:57 +0000

We have released a new solution that provides businesses with code similarity analysis and gives technical evidence for APT attribution.

MalwareBytes Security

New LNK attack tied to Higaisa APT discovered

June 4, 2020 admin .lnk, APT, higaisa, korea, malware, PlugX, Rat, Threat analysis

Credit to Author: Threat Intelligence Team| Date: Thu, 04 Jun 2020 15:00:00 +0000

We describe a new spearphishing campaign tied to the potential North Korean Higaisa APT group.

Categories:

Tags: APT Higaisa korea LNK PlugX rat

(Read more…)

The post New LNK attack tied to Higaisa APT discovered appeared first on Malwarebytes Labs.

MalwareBytes Security

New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app

May 6, 2020 admin APT, dacls, Lazarus, Mac, malware, Rat, Threat analysis, tinkaotp

Credit to Author: Threat Intelligence Team| Date: Wed, 06 May 2020 15:59:36 +0000

The Lazarus group improves their toolset with a new RAT specifically designed for the Mac.

Categories:

Tags: APT Dacls Lazarus mac malware rat tinkaOTP

MalwareBytes Security

A week in security (April 27 – May 3)

May 4, 2020 admin apple, APT, awis, Bluetooth, bluetooth attack, bluetooth vulnerabilities, civicsmart, Cloud Security, coronavirus, covid-19, hacked, hospitals, JIT, just in time, Malwarebytes news, oceanlotus, pandemic survival book, phantomlance, phishing scam, ransomware, recap, SCADA, SMB, Troldesh ransomware, VPN, weekly blog roundup, zoom, zoom phishing

Credit to Author: Malwarebytes Labs| Date: Mon, 04 May 2020 15:17:37 +0000

A roundup of the previous week’s security news, including cloud data protection, Troldesh, VPNs, the cybercrime economy, and more.

Categories:

Malwarebytes news

Tags: Apple APT awis bluetooth bluetooth attack Bluetooth vulnerabilities CivicSmart cloud security coronavirus covid-19 hacked hospitals JIT just in time oceanlotus pandemic survival book PhantomLance phishing scam ransomware recap scada SMB Troldesh ransomware vpn weekly blog roundup zoom zoom phishing

(Read more…)

The post A week in security (April 27 – May 3) appeared first on Malwarebytes Labs.

Kaspersky Security

PhantomLance Android backdoor discovered on Google Play

April 30, 2020 admin Android, APT, backdoors, Google Play, GReAT, phantomlance, root, SAS, sas 2020, Security Analyst Summit, Threats, trojans

Credit to Author: Pavel Shoshin| Date: Thu, 30 Apr 2020 11:50:33 +0000

Kaspersky experts found the PhantomLance Trojan backdoor for Android in Google Play.

Kaspersky Security

Dangerous holy water

March 31, 2020 admin APT, Business, enterprise, news, SMB, Targeted attack, Threats, watering hole

Credit to Author: Nikolay Pankov| Date: Tue, 31 Mar 2020 13:23:27 +0000

Attackers are infecting users’ computers with a backdoor posing as an Adobe Flash Player update.

← Previous