Chinese ‘Web Shell Whisperer’ Uses Shells and Tunnels to Maintain Long-Term Access
A recent cybersecurity investigation by Sygnia has uncovered a sophisticated operation by a China-nexus threat actor, dubbed the "Weaver Ant," which has been using...
Threat Actors Exploit Fake Meta Emails to Steal Ad Account Credentials
A sophisticated phishing campaign has been uncovered by the Cofense Phishing Defense Center, targeting Meta Business accounts through fake emails that mimic urgent notifications...
Threat Actors Exploit Reddit to Distribute AMOS and Lumma Stealers
Threat actors have been leveraging Reddit to spread malicious software, specifically targeting cryptocurrency enthusiasts with AMOS and Lumma stealers.
These malware families are distributed...
UAT-5918 Threat Actors Target Exposed Web and App Servers via N-Day Vulnerabilities
Cisco Talos has identified a malicious campaign, tracked under the designation UAT-5918, which has been active since at least 2023.
This threat actor is...
RansomHub Affiliate Deploys New Custom Backdoor “Betruger” for Persistent Access
Symantec's Threat Hunter team has identified a new custom backdoor called "Betruger" that has been linked to a RansomHub affiliate.
This sophisticated malware appears...
