Simple Tips for Your Computer – Article by Linkcyb Team
Living without the Internet is hardly imaginable today. However, the anonymity of the internet has led to the flourishing of cyber attacks and malware. Malicious software can cause damage to our devices, steal personal data, and lead to monetary loss. Therefore, protecting your computer from these threats is crucial. This article will outline some methods […]
Linux malware strengthens links between Lazarus and the 3CX supply‑chain attack – Article by Linkcyb Team
Similarities with newly discovered Linux malware used in Operation DreamJob corroborate the theory that the infamous North Korea-aligned group is behind the 3CX supply-chain attack ESET researchers have discovered a new Lazarus Operation DreamJob campaign targeting Linux users. Operation DreamJob is the name for a series of campaigns where the group uses social engineering techniques […]
The Hacker Who Hijacked Matt Walsh’s Twitter Was Just ‘Bored’ – post by LinkCyb
Editor’s note: Following publication, Twitter permanently suspended this article’s author, WIRED senior reporter Dell Cameron, citing its policy against the distribution of hacked material. WIRED believes Twitter’s actions were unjustified. Please see statements from WIRED managing editor Hemal Jhaveri and editor-in-chief Gideon Lichfield for more details. The hacker who claims to have compromised the Twitter […]
How ChatGPT—and Bots Like It—Can Spread Malware – post by LinkCyb
However, these protections aren’t too difficult to get around: ChatGPT can certainly code, and it can certainly compose emails. Even if it doesn’t know it’s writing malware, it can be prompted into producing something like it. There are already signs that cybercriminals are working to get around the safety measures that have been put in […]
DFIR via XDR: How to expedite your investigations with a DFIRent approach – post by LinkCyb
Rapid technological evolution requires security that is resilient, up to date and adaptable. In this article, we will cover the transformation in the field of DFIR (digital forensics and incident response) in the last couple years, focusing on the digital forensics’ aspect and how XDR fits into the picture. Before we dive into the details, […]
Iranian Hackers Using SimpleHelp Remote Support Software for Persistent Access – post by LinkCyb
Apr 18, 2023Ravie LakshmananCyber Threat / Malware The Iranian threat actor known as MuddyWater is continuing its time-tested tradition of relying on legitimate remote administration tools to commandeer targeted systems. While the nation-state group has previously employed ScreenConnect, RemoteUtilities, and Syncro, a new analysis from Group-IB has revealed the adversary’s use of the SimpleHelp remote […]
LockBit Ransomware Now Targeting Apple macOS Devices – post by LinkCyb
Threat actors behind the LockBit ransomware operation have developed new artifacts that can encrypt files on devices running Apple’s macOS operating system. The development, which was reported by the MalwareHunterTeam over the weekend, appears to be the first time a big-game ransomware crew has created a macOS-based payload. Additional samples identified by vx-underground show that the macOS
Israeli Spyware Vendor QuaDream to Shut Down Following Citizen Lab and Microsoft Expose – post by LinkCyb
Israeli spyware vendor QuaDream is allegedly shutting down its operations in the coming days, less than a week after its hacking toolset was exposed by Citizen Lab and Microsoft. The development was reported by the Israeli business newspaper Calcalist, citing unnamed sources, adding the company “hasn’t been fully active for a while” and that it “has […]
New QBot Banking Trojan Campaign Hijacks Business Emails to Spread Malware – post by LinkCyb
A new QBot malware campaign is leveraging hijacked business correspondence to trick unsuspecting victims into installing the malware, new findings from Kaspersky reveal. The latest activity, which commenced on April 4, 2023, has primarily targeted users in Germany, Argentina, Italy, Algeria, Spain, the U.S., Russia, France, the U.K., and Morocco. QBot (aka Qakbot or Pinkslipbot) is […]
FIN7 and Ex-Conti Cybercrime Gangs Join Forces in Domino Malware Attacks – post by LinkCyb
A new strain of malware developed by threat actors likely affiliated with the FIN7 cybercrime group has been put to use by the members of the now-defunct Conti ransomware gang, indicating collaboration between the two crews. The malware, dubbed Domino, is primarily designed to facilitate follow-on exploitation on compromised systems, including delivering a lesser-known information stealer […]