Squirrelwaffle uses Office docs to infect victim systems with CobaltStrike
Researchers have discovered a new malware threat dubbed “Squirrelwaffle” that uses Microsoft Office documents to infect victim systems with CobaltStrike.
Malware
Attackers exploit ZOHO ManageEngine ADSelfService Plus software
Attackers have been exploiting vulnerable ZOHO ManageEngine ADSelfService Plus software as part of a targeted campaign.
Embedded malware discovered in NPM package ua-parser-js
Embedded malware has been discovered in an NPM package ua-parser-js, a popular JavaScript library designed to detect browser, engine, OS, CPU, and device type/model from User-Agent data.
Trickbot tops most popular malware in September 2021
Check Point Research has revealed that Trickbot is once again the most popular malware, according to a Global Threat Index report for September 2021. A remote access trojan, njRAT, was also added to the top 10 report for first time ever.
FontOnLake malware targets Linux systems
A previously unknown malware family dubbed FontOnLake is targeting Linux systems. The malware is made up of “custom and well-designed modules.”
APT group ChamelGang targets Russian Energy and Aviation industries, 9 other countries
A new advanced persistent threat (APT) group dubbed ChamelGang has been targeting Russian Energy and Aviation industries, as well as entities in 9 other countries.
Microsoft: Nobelium cybergang deploys FoggyWeb backdoor to target AD FS servers
Microsoft has warned that Nobelium threat actors are using a new backdoor malware dubbed FoggWeb to target Active Directory Federation Services (AD FS) servers.
Iowa-based farm service provider NEW Cooperative hit by BlackMatter ransomware attack
An Iowa-based farm service provider NEW Cooperative was hit by a major BlackMatter ransomware attack. Security researchers leaked information that the cybercriminals behind the attack are demanding $5.9 million in ransom.
Sidewalk backdoor linked to Grayfly espionage group
Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.
FBI warns of increasing ransomware attacks against the Food and Agriculture sector
The Federal Bureau of Investigation (FBI) has issued a cybersecurity alert warning of increasing ransomware attacks against the Food and Agriculture sector.