Severity Medium Analysis Summary An attack campaign using the Drupalgeddon2 unauthenticated remote code execution vulnerability to execute malicious code and deface websites. In the case analyzed […]

Severity High Analysis Summary A malicious file masquerading as Windows Security Scanner is being distributed via spam and demands a ransom despite corrupting files and making […]

Severity High Analysis Summary Lazarus have been active again are targeting different countries and organizations. Some samples of their activity were analyzed by a group of […]

Severity Medium Analysis Summary Lab52 researchers analyzed infrastructure and associated malware samples indicating a long, ongoing njRAT campaign against the Middle East. The researchers’ analysis began […]

Severity Medium Analysis Summary A large-scale banking botnet has targeted approximately 800,000 Android devices belonging to Russian citizens since at least 2016, according to a new […]

Severity High Analysis Summary Following samples of Lazarus group, an state sponsored threat actor targeting financially organizations for their gains have been active again and actively […]

Severity Medium Analysis Summary A new Trojan-delivered spyware that uses Telegram to exfiltrate stolen information. Using Telegram as a Command and Control (CnC) channel allows the […]

Severity High Analysis Summary Advanced persistent threat actors are continuing their exploit attempts against name-brand VPNs used by organizations around the world.  Pulse Connect Secure CVE-2019-11510: […]

Severity High Analysis Summary A set of cyber espionage attack campaigns across Asia, which used a mix of publicly available and custom malware. Unit 42 created […]