The “missed package” phishing messages, likely the work of a hacking-for-hire group, bounds into inboxes, bearing ASyncRAT. Read More
Related Posts
U.S. charges Joker’s Stash and Rescator money launderers
U.S. charges Joker’s Stash and Rescator money launderers
The U.S. Department of Justice (DoJ) has announced charges against two Russian nationals for operating billion-dollar money laundering services for cybercriminals, including ransomware groups. […] Read More
Earth Lusca’s cyberespionage techniques.
Earth Lusca’s cyberespionage techniques.
Leaving the backdoor unlocked in upatched Linux systems. Read More
The CyberWire
Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw
Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw
A number of state-back threat actors from Russia and China have been observed exploiting a recent security flaw in the WinRAR archiver tool for Windows as part of their operations.
The vulnerability in question is CVE-2023-38831 (CVSS score: 7.8), which allows attackers to execute arbitrary code when a user attempts to view a benign file within a ZIP archive. The shortcoming has been actively Read More
The Hacker News | #1 Trusted Cybersecurity News Site