Search cyberveille.decio.ch

Found 19 bookmarks

Custom sorting

CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign

This blog delves into the Phemedrone Stealer campaign's exploitation of CVE-2023-36025, the Windows Defender SmartScreen Bypass vulnerability, for its defense evasion and investigates the malware's payload.

#trendmicro #EN #2023 #CVE-2023-36025 #Phemedrone #Stealer

·trendmicro.com·Jan 12, 2024

CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign

Rhadamanthys v0.5.0 - a deep dive into the stealer’s components

The Rhadamanthys stealer is a multi-layer malware, sold on the black market, and frequently updated. Recently the author released a new major version, 0.5.0. In the new version, the malware expands its stealing capabilities and also introduces some general-purpose spying functions. A new plugin system makes the malware expandable for specific distributor needs. The custom executable formats, used for modules, are unchanged since our last publication (XS1 and XS2 formats are still in distribution). Check Point Research (CPR) provides a comprehensive review of the agent modules, presenting their capabilities and implementation, with a focus on how the stealer components are loaded and how they work.

#checkpoint #EN #2023 #Rhadamanthys #stealer #malware #analysis

·research.checkpoint.com·Dec 18, 2023

Rhadamanthys v0.5.0 - a deep dive into the stealer’s components

Atomic Stealer distributed to Mac users via fake browser updates | Malwarebytes

Compromised websites are being used to redirect to fake browser updates and deliver malware onto Mac users.

#malwarebytes #EN #2023 #macos #Stealer #fake #browser #updates

·malwarebytes.com·Nov 22, 2023

Atomic Stealer distributed to Mac users via fake browser updates | Malwarebytes

Mac users targeted in new malvertising campaign delivering Atomic Stealer

Malicious ads for Google searches are targeting Mac users Phishing sites trick victims into downloading what they believe is the app they want The malware is bundled in an ad-hoc signed app so it cannot be revoked by Apple * The payload is a new version of the recent Atomic Stealer for OSX

#malwarebytes #EN #2023 #macos #AtomicStealer #stealer #tradingview

·malwarebytes.com·Sep 7, 2023

Mac users targeted in new malvertising campaign delivering Atomic Stealer

Unmasking the Meduza Stealer: Comprehensive Analysis & Countermeasures

Read Uptycs' analysis of the newly discovered Meduza Stealer malware targeting Windows users, revealing capabilities, potential impact & mitigation steps.

#Uptycs #EN #2023 #meduza #Stealer #Windows #analysis

·uptycs.com·Jul 7, 2023

Unmasking the Meduza Stealer: Comprehensive Analysis & Countermeasures

Meduza Stealer or The Return of The Infamous Aurora Stealer

Meduza Stealer malware analysis

#russianpanda #EN #2023 #analysis #meduza #Aurora #Stealer #malware

·russianpanda.com·Jun 29, 2023

Meduza Stealer or The Return of The Infamous Aurora Stealer

Cyble — Threat Actor Selling New Atomic macOS (AMOS) Stealer on Telegram

CRIL analyzes AMOS, a stealthy new information stealer targeting macOS and disseminating stolen information via Telegram.

#cyble #EN #2023 #AMOS #macOS #stealer #Telegram #Golang #MacStealer

·blog.cyble.com·Apr 26, 2023

Cyble — Threat Actor Selling New Atomic macOS (AMOS) Stealer on Telegram

MacStealer: New macOS-based Stealer Malware Identified

Uptycs has already identified three Windows-based malware families that use Telegram this year, including Titan Stealer, Parallax RAT, and HookSpoofer. Attackers are increasingly turning to it, particularly for stealer command and control (C2). And now the Uptycs threat research team has discovered a macOS stealer that also controls its operations over Telegram. We’ve dubbed it MacStealer.

#Uptycs #EN #2023 #macOS #C2 #stealer #MacStealer #Telegram

·uptycs.com·Mar 27, 2023

MacStealer: New macOS-based Stealer Malware Identified

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

Stealing data from Mac devices can unlock the door for both financially-motivated cybercrime and espionage. Learn how recent macOS malware does it.

#sentinelone #EN #2023 #Apple #macos #Mac #stealer #stealing #attacks

·sentinelone.com·Mar 22, 2023

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

A Fake Project Related to the Sandbox Malspam

On February 27, 2023, a “The Sandbox” employee was compromised, resulting in sending malspam which introduced them to “PureLand”. It leads to a RedLine Stealer and an unknown stealer for macOS. A…

#iamdeadlyz #EN #2023 #medium #Malspam #PureLand #macos #Redline #stealer

·iamdeadlyz.medium.com·Mar 20, 2023

A Fake Project Related to the Sandbox Malspam

Lumma Stealer targets YouTubers via Spear-phishing Email | by S2W | S2W BLOG | Feb, 2023 | Medium

Lumma Stealer sellers use the name “LummaC” on an underground forum called XSS, which is based in Russia. The seller has been actively promoting the malware since April 2022. In August of that year…

#s2wblog #EN #2023 #LummaC #Stealer #analysis

·medium.com·Mar 1, 2023

Lumma Stealer targets YouTubers via Spear-phishing Email | by S2W | S2W BLOG | Feb, 2023 | Medium

The Titan Stealer: Notorious Telegram Malware Campaign

The Uptycs threat research team discovered a Titan stealer malware campaign, which is marketed and sold by a threat actor (TA) through a Telegram channel.

#uptycs #EN #2023 #Titan #Stealer #Campaign #analysis #IoCs

·uptycs.com·Jan 25, 2023

The Titan Stealer: Notorious Telegram Malware Campaign

InfoSec Handlers Diary Blog - SANS Internet Storm Center

Malicious Google Ad --> Fake Notepad++ Page --> Aurora Stealer malware

#SANS #EN #2023 #googleads #Fake #Notepad #Aurora #Stealer #malware

·isc.sans.edu·Jan 18, 2023

InfoSec Handlers Diary Blog - SANS Internet Storm Center

MacStealer: New macOS-based Stealer Malware Identified

#Uptycs #EN #2023 #macOS #C2 #stealer #MacStealer #Telegram

·uptycs.com·Mar 27, 2023

MacStealer: New macOS-based Stealer Malware Identified

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

Stealing data from Mac devices can unlock the door for both financially-motivated cybercrime and espionage. Learn how recent macOS malware does it.

#sentinelone #EN #2023 #Apple #macos #Mac #stealer #stealing #attacks

·sentinelone.com·Mar 22, 2023

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

A Fake Project Related to the Sandbox Malspam

#iamdeadlyz #EN #2023 #medium #Malspam #PureLand #macos #Redline #stealer

·iamdeadlyz.medium.com·Mar 20, 2023

A Fake Project Related to the Sandbox Malspam

Lumma Stealer targets YouTubers via Spear-phishing Email | by S2W | S2W BLOG | Feb, 2023 | Medium

#s2wblog #EN #2023 #LummaC #Stealer #analysis

·medium.com·Mar 1, 2023

Lumma Stealer targets YouTubers via Spear-phishing Email | by S2W | S2W BLOG | Feb, 2023 | Medium

The Titan Stealer: Notorious Telegram Malware Campaign

The Uptycs threat research team discovered a Titan stealer malware campaign, which is marketed and sold by a threat actor (TA) through a Telegram channel.

#uptycs #EN #2023 #Titan #Stealer #Campaign #analysis #IoCs

·uptycs.com·Jan 25, 2023

The Titan Stealer: Notorious Telegram Malware Campaign

InfoSec Handlers Diary Blog - SANS Internet Storm Center

Malicious Google Ad -- Fake Notepad++ Page -- Aurora Stealer malware

#SANS #EN #2023 #googleads #Fake #Notepad #Aurora #Stealer #malware

·isc.sans.edu·Jan 18, 2023

InfoSec Handlers Diary Blog - SANS Internet Storm Center