Russian Hackers Deploy Stealthy RDP Attack Campaign Against High-Profile Targets
APT29, a Russian state-sponsored hacking group, has launched a sophisticated campaign using manipulated RDP configurations to compromise government and military targets. The attackers leverage PyRDP tool as a proxy to intercept communications while avoiding detection, targeting approximately 200 high-profile victims in a single day.
The Mask APT Returns: Advanced Cyber Espionage Group Targets Latin America After Decade of Silence
A sophisticated state-sponsored hacking group known as The Mask has emerged from a 10-year hiatus, launching new attacks against Latin American organizations. The group demonstrates enhanced capabilities through custom malware and innovative infection techniques, raising concerns in the cybersecurity landscape.
LDAP Enumeration: The Hidden Security Risk in Enterprise Networks
Organizations face a critical cybersecurity challenge as LDAP, essential for network management, becomes a prime target for sophisticated attackers. Security experts warn that threat actors are increasingly exploiting LDAP enumeration capabilities to map networks and plan devastating cyberattacks.
FBI Alerts on Chinese Security Camera Attacks: HiatusRAT Campaign Targets Western Nations
The FBI warns of an ongoing malware campaign exploiting Chinese-made security cameras and DVRs across Western countries using HiatusRAT malware. The sophisticated attacks, possibly state-sponsored, focus on gathering intelligence related to U.S. military procurement and Taiwan-based organizations.
CoinLurker: New Crypto-Stealing Malware Exploits Microsoft Edge WebView2 to Evade Detection
A sophisticated new malware called CoinLurker is targeting cryptocurrency users through deceptive update notifications, leveraging Microsoft Edge WebView2 technology to steal wallet data. The malware employs advanced evasion techniques including EtherHiding and stolen certificates while targeting multiple cryptocurrency platforms.
Serbian Police Accused of Using Cellebrite Tools to Deploy NoviSpy Surveillance Malware
Serbian authorities are under scrutiny for allegedly exploiting Cellebrite's digital forensics tools to secretly install NoviSpy spyware on citizens' devices during police interactions. The malware, linked to Serbia's intelligence agency, enables extensive surveillance of journalists and activists through screenshot capture, location tracking, and audio recording.
The Mask APT Group Returns: Advanced Cross-Platform Espionage Campaign Targets Latin America
A sophisticated cyber-espionage group called The Mask has resurfaced with enhanced multi-platform malware capabilities targeting organizations across Latin America. The threat actor's evolved arsenal includes new frameworks for Windows, macOS, and mobile systems, demonstrating their persistent threat in global cyber-espionage.
Massive Malvertising Campaign Exploits Ad Networks with Fake CAPTCHA Scam
Security researchers uncover 'DeceptionAds' operation serving over 1 million malicious ad impressions daily through 3,000+ compromised websites. The sophisticated campaign uses fake CAPTCHA pages to distribute information-stealing malware while exploiting legitimate advertising infrastructure.
Serbian Police Caught Using Cellebrite Tech to Plant Spyware on Journalists' Phones
Serbian law enforcement used Cellebrite's phone-unlocking technology to secretly install NoviSpy spyware on devices belonging to journalists and activists. The groundbreaking investigation by Amnesty International reveals the first documented case of Cellebrite's tools being misused to enable spyware infections.
Russia's €70M Disinformation Campaign Exposed in Bulgaria and Romania
A Bulgarian cybersecurity firm uncovers a massive Russian influence operation targeting Bulgaria and Romania, with expenditures of €70 million since 2010. The sophisticated campaign used targeted ads, malware, and bot networks to spread propaganda and collect user data.