Spyware posing as VPN apps – Week in security with Tony Anscombe

The Bahamut APT group distributes at least eight malicious apps that pilfer victims’ data and monitor their messages and conversations This week, ESET researchers published their analysis of a malicious campaign where the Bahamut APT group targets Android users via trojanized versions of two legitimate VPN apps – SoftVPN and OpenVPN. Since January 2022, Bahamut […]

Read More

Slippery RansomExx Malware Moves to Rust, Evading VirusTotal

The APT group DefrayX appears to have launched a new version of its RansomExx malware, rewritten in the Rust programming language — possibly to avoid detection by antivirus software. According to IBM Security X-Force Threat researchers, that evasion may be successful, at least for now. IBM reported that one sample that it analyzed “was not detected […]

Read More

New infosec products of the week: November 25, 2022

Here’s a look at the most interesting products from the past week, featuring releases from Solvo, Sonrai Security, and Spring Labs. Sonrai Risk Insights Engine empowers security teams to reduce impact of exploits Sonrai Security releases Risk Insights Engine which lets developer and security teams control the chaos in both their organizations and their multicloud […]

Read More

Redis and AWS extend partnership to accelerate cloud migration and application development

Redis has unveiled a multi-year strategic collaboration agreement (SCA) with Amazon Web Services (AWS). Building on the companies’ existing work together, this agreement will make it easier and faster for customers to adopt Redis Enterprise Cloud’s real-time data processing capabilities with the global reach of AWS services. This SCA is designed to deliver new product […]

Read More

How Development Teams Should Respond to Text4Shell

A family moves into their dream home, only to be plagued by ominous letters, a strange tenant, and sinister threats. Sound familiar? It should. This is the story behind The Watcher, a true crime series that premiered on Netflix on October 13, 2022. It’s also the story of the Text4Shell vulnerability, which was announced that […]

Read More

EU Parliament Website Attacked After MEPs Slam Russian ‘Terrorism’

The European Parliament website was hit by a cyberattack claimed by pro-Russian hackers Wednesday shortly after lawmakers approved a resolution calling Moscow a “state sponsor of terrorism”. “The European Parliament is under a sophisticated cyberattack. A pro-Kremlin group has claimed responsibility,” the parliament’s president, Roberta Metsola, posted on Twitter.  “Our IT experts are pushing back […]

Read More

Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse

Security researchers at Proofpoint are calling attention to the discovery of a commercial red-teaming tool called Nighthawk, warning that the command-and-control framework is likely to be abused by threat actors. According to a new report from Proofpoint, Nighthawk is an advanced C2 framework sold by MDSec, a European outfit that sells adversary simulation and penetration […]

Read More
X