Search cyberveille.decio.ch

Found 9 bookmarks

Custom sorting

A backdoor with a cryptowallet stealer inside cracked macOS software

We review a new macOS backdoor that piggybacks on cracked software to replace Bitcoin and Exodus wallets with malware.

#securelist #EN #2024 #Apple #MacOS #Backdoor #Cryptocurrencies #DNS #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-stealer

·securelist.com·Jan 22, 2024

A backdoor with a cryptowallet stealer inside cracked macOS software

DNS changer in malicious mobile app used by Roaming Mantis

Roaming Mantis (a.k.a Shaoye) is a long-term cyberattack campaign that uses malicious Android package (APK) files to control infected Android devices and steal data. In 2022, we observed a DNS changer function implemented in its Android malware Wroba.o.

#securelist #EN #2023 #APT #RoamingMantis #Google-Android #Malware-Descriptions #Shaoye #Malware-Technologies #Mobile-Malware #Targeted-attacks #Trojan

·securelist.com·Jan 20, 2023

DNS changer in malicious mobile app used by Roaming Mantis

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

In this report, we compare the ROADSWEEP ransomware and ZEROCLEARE wiper versions used in two waves of attacks against Albanian government organizations.

#securelist #2022 #EN #Malware #Malware-Descriptions #Malware-Technologies #Ransomware #Targeted-attacks #Trojan #Wiper #Albania

·securelist.com·Dec 22, 2022

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange

At the end of September, GTSC reported the finding of two 0-day vulnerabilities in Microsoft Exchange Server, CVE-2022-41040 and CVE-2022-41082. The cybersecurity community dubbed the pair of vulnerabilities ProxyNotShell.

#securelist #EN #2022 #DLL-hijacking #Malware-Descriptions #Microsoft-Exchange #Trojan #Vulnerabilities-and-exploits #Zero-day #CVE-2022-41040 #CVE-2022-41082 #analysis

·securelist.com·Dec 20, 2022

CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

NullMixer is a dropper delivering a number of Trojans, such as RedLine Stealer, SmokeLoader, Satacom, and others.

#securelist #EN #2022 #NullMixer #dropper #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-Dropper #Trojan-stealer

·securelist.com·Sep 28, 2022

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

DNS changer in malicious mobile app used by Roaming Mantis

#securelist #EN #2023 #APT #RoamingMantis #Google-Android #Malware-Descriptions #Shaoye #Malware-Technologies #Mobile-Malware #Targeted-attacks #Trojan

·securelist.com·Jan 20, 2023

DNS changer in malicious mobile app used by Roaming Mantis

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

In this report, we compare the ROADSWEEP ransomware and ZEROCLEARE wiper versions used in two waves of attacks against Albanian government organizations.

#securelist #2022 #EN #Malware #Malware-Descriptions #Malware-Technologies #Ransomware #Targeted-attacks #Trojan #Wiper #Albania

·securelist.com·Dec 22, 2022

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange

#securelist #EN #2022 #DLL-hijacking #Malware-Descriptions #Microsoft-Exchange #Trojan #Vulnerabilities-and-exploits #Zero-day #CVE-2022-41040 #CVE-2022-41082 #analysis

·securelist.com·Dec 20, 2022

CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

NullMixer is a dropper delivering a number of Trojans, such as RedLine Stealer, SmokeLoader, Satacom, and others.

#securelist #EN #2022 #NullMixer #dropper #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-Dropper #Trojan-stealer

·securelist.com·Sep 28, 2022

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist