Severity Medium Analysis summary A Point of Sale breach that revealed malicious and suspicious files in the terminals of multiple franchise and corporate locations. A number […]

Severity High Analysis Summary A new variant of the Vega ransomware which is named Buran. The ransomware is being delivered using the RIG exploit kit. Once […]

Severity Medium Analysis Summary A new finance spam campaign with HTML attachments has been discovered that utilizes Google’s public DNS resolver to retrieve JavaScript commands embedded […]

Severity High Analysis Summary In one of the MuddyWater campaigns, spear-phishing emails that the group sent to a university in Jordan and the Turkish government. In […]

Severity Medium Analysis Summary Several users have reported observing several Bitcoin extortion emails with the subject “[redacted name] : [redacted pw]” and “I hacked your device […]

Severity High Analysis Summary MuddyWater (aka SeedWorm/Temp.Zagros) is a high-profile Advanced Persistent Threat (APT) state sponsored actor. The group was first observed in 2017, and since […]

Severity Medium Analysis Summary HAWKBALL is a backdoor that attackers can use to collect information from the victim, as well as to deliver payloads. HAWKBALL is […]

Severity Medium Analysis Summary A credit card skimming campaign recently observed that steals payment card details from compromised websites. MageCart is the name given to numerous […]

Severity Medium Analysis Summary A botnet named GoldBrute. It is currently attempting to brute-force credentials on Internet-accessible RDP servers. The number of servers the botnet is […]