Year: 2022 | Page 5 | Securelist

Reports

Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

Kaspersky GReAT experts describe the latest Mysterious Elephant APT activity. The threat actor exfiltrates data related to WhatsApp and employs tools such as BabShell and MemLoader HidenDesk.

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Archive

APT trends report Q2 2022

CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

Luna and Black Basta — new ransomware for Windows, Linux and ESXi

Text-based fraud: from 419 scams to vishing

Dynamic analysis of firmware components in IoT devices

The SessionManager IIS backdoor

The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs

APT ToddyCat

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

How much does access to corporate infrastructure cost?

Router security in 2021

CVE-2022-30190 (Follina) vulnerability in MSDT: description and counteraction

WinDealer dealing on the side

IT threat evolution in Q1 2022. Mobile statistics

IT threat evolution Q1 2022

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

Mem3nt0 mori – The Hacking Team is back!

Mysterious Elephant: a growing threat

Sleep with one eye open: how Librarian Ghouls steal data by night

Subscribe to our weekly e-mails