The updated version of BLISTER malware, integrated into a legitimate VLC Media Player library, is being used alongside SocGholish in multiple campaigns to distribute Cobalt Strike and LockBit ransomware, posing significant risks to victim networks.
Chae$4, an advanced variant of the Chaes malware, poses a significant threat to the banking and logistics industries in Latin America, specifically targeting customers of financial and logistics companies, with a primary focus on Brazilian customers of MercadoLivre, the largest e-commerce company in Latin America.
Andariel, a sub-cluster of the Lazarus Group, has been targeting financial institutions, defense contractors, government agencies, universities, cybersecurity vendors, and energy companies in South Korea for over a decade.
X, formerly known as Twitter, has made updates to its privacy policy, including the collection of users’ biometric data and the introduction of video and audio call features, raising concerns about privacy and data protection.
Cybersecurity experts uncover an ongoing VMConnect campaign involving North Korean state-sponsored threat actors infiltrating the Python Package Index (PyPI) to distribute malicious software, raising concerns in the cybersecurity community due to its persistence and adaptability.
LockBit, a hacking group with ties to Russian nationals, conducted a cyber-attack on Zaun, a fencing systems manufacturer based in Wolverhampton, resulting in the unauthorized download of approximately 10 GB of data, including historic emails, orders, drawings, and project files, raising concerns about the vulnerability of sensitive sites such as British military and intelligence installations.
