APT Malware LOLBins & GTFOBins Attack users by Evading the Security Sysem
Earlier time, cybercriminals depend more on the malware files, scripts, VBscripts to achieve their course of action. Modern ay cyber threat actors, depends more on abusing the genuine windows system files and achieve their goal in persistence,...
Rising Threats in CyberSpace – Organizations Must be Prepared to Experience
Recently we have seen more increase in various threats and the ways of intruding the network and there were increase by APT groups. Mostly because of political agenda, cyberespionage, cyberwars, competitions and more of script kiddies.Even...
FORMBOOK Malware Delivered via Weaponized RTF Word Docs – Using CVE-2017-11882
Formbook campaign with what looks like a few changes. Recently the criminals distributing this malware have been using .exe files inside various forms of an archive, including .iso, .ace,...
Hackers Conducting RDP Attacks Using New Technique to Bypass Protections
A Microsoft Windows component, RDP was designed to provide administrators, engineers, and users with remote access to systems. However, threat actors have been using the technology for nefarious purposes, and the trend continues, especially since an RDP attack...
Improved Fallout Exploit Kit – Now supports HTTPS and Flash exploit (CVE-2018-15982)
Fallout is an exploit kit (EK) first identified at the end of August 2018. It was first seen as a part of a malvertising campaign affecting users in...
Malware Campaign -Distributing Ursnif Banking Malware Using Fileless Technique
Ursnif malware also known as Gozi ISFB, is a variant of the original Gozi banking Trojan, which leaked its source code online in 2014.The Ursnif sample comes from a Microsoft Word document containing a malicious VBA macro....
