Year: 2014 | Page 7 | Securelist

Reports

In this article, we discuss the tools and TTPs used in the SideWinder APT’s attacks in H2 2024, as well as shifts in its targets, such as an increase in attacks against the maritime and logistics sectors.

Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.

While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.

Lazarus targets employees of a nuclear-related organization with a bunch of malware, such as MISTPEN, LPEClient, RollMid, CookieTime and a new modular backdoor CookiePlus.

Archive

Microsoft Updates July 2014, etc

New gTLDs, same attacks

Versatile DDoS Trojan for Linux

Cloud Services: Holes in Corporate Network Security

Suarez phishing ‘petition’ dupes users and their friends

Miniduke is back: Nemesis Gemina and the Botgen Studio

Microsoft seizes 22 NO-IP domains, disrupts cybercriminal and nation state APT malware operations

Spam in May 2014

RECON 2014

Use the force Luuuk

HackingTeam 2.0: The Story Goes Mobile

The Rise of Cybercrime in Dubai and UAE

Adware or money loss instead of your favorite World Cup game

Attacks before system startup

Cybercriminals targeting obsolete Japanese blogging tool

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

SideWinder targets the maritime and nuclear sectors with an updated toolset

EAGERBEE, with updated and novel components, targets the Middle East

BellaCPP: Discovering a new BellaCiao variant written in C++

Lazarus group evolves its infection chain with old and new malware

Subscribe to our weekly e-mails