First appearing in March, the group has been leveraging ProxyShell against targets in 10 countries and employs a variety of malware to steal data from compromised networks.
Source: Read More (Threatpost)
You might be interested in …
[ZDNet] Konni remote access Trojan receives ‘significant’ upgrades
Researchers say the security community should keep a close eye on this malware strain. Source: Read More (Latest topics for ZDNet in Security)
[HackerNews] Critical Chipset Bugs Open Millions of Android Devices to Remote Spying
Three security vulnerabilities have been disclosed in the audio decoders of Qualcomm and MediaTek chips that, if left unresolved, could allow an adversary to remotely gain access to media and audio conversations from affected mobile devices. According to Israeli cybersecurity company Check Point, the issues could be used as a launchpad to carry out remote […]
[NCSC-FI News] Crowd-sourced attacks present new risk of crisis escalation
An unpredictable and largely unknown set of actors present a threat to organizations, despite their sometimes unsophisticated techniques. Customers who are typically focused on top-tier, state-sponsored attacks should remain aware of these highly motivated threat actors, as well Misattribution of these actors carries the risk of nations escalating an already dangerous conflict in Ukraine Based […]