Sunday, December 3, 2023

The Hacker News

The Hacker News | #1 Trusted Cybersecurity News Site The Hacker News is the most trusted and popular cybersecurity publication for information security professionals seeking breaking news, actionable insights and analysis.

  • Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.
    by Newsroom on December 2, 2023 at 8:29 am

    Organizations in the Middle East, Africa, and the U.S. have been targeted by an unknown threat actor to distribute a new backdoor called Agent Racoon. "This malware family is written using the .NET framework and leverages the domain name service (DNS) protocol to create a covert channel and provide different backdoor functionalities," Palo Alto Networks Unit 42 researcher Chema Garcia 

  • Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware
    by Newsroom on December 2, 2023 at 7:52 am

    A Russian national has been found guilty in connection with his role in developing and deploying a malware known as TrickBot, the U.S. Department of Justice (DoJ) announced. Vladimir Dunaev, 40, was arrested in South Korea in September 2021 and extradited to the U.S. a month later. "Dunaev developed browser modifications and malicious tools that aided in credential harvesting and data

  • New FjordPhantom Android Malware Targets Banking Apps in Southeast Asia
    by Newsroom on December 1, 2023 at 12:40 pm

    Cybersecurity researchers have disclosed a new sophisticated Android malware called FjordPhantom that has been observed targeting users in Southeast Asian countries like Indonesia, Thailand, and Vietnam since early September 2023. "Spreading primarily through messaging services, it combines app-based malware with social engineering to defraud banking customers," Oslo-based mobile app

  • Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats
    by The Hacker News on December 1, 2023 at 10:50 am

    The U.S. Department of Justice (DOJ) and the FBI recently collaborated in a multinational operation to dismantle the notorious Qakbot malware and botnet. While the operation was successful in disrupting this long-running threat, concerns have arisen as it appears that Qakbot may still pose a danger in a reduced form. This article discusses the aftermath of the takedown, provides mitigation

  • Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan
    by Newsroom on December 1, 2023 at 10:49 am

    A suspected Chinese-speaking threat actor has been attributed to a malicious campaign that targets the Uzbekistan Ministry of Foreign Affairs and South Korean users with a remote access trojan called SugarGh0st RAT. The activity, which commenced no later than August 2023, leverages two different infection sequences to deliver the malware, which is a customized variant of Gh0st RAT&nbsp