Compromised Website Images Camouflage ObliqueRAT Malware
.
The ObliqueRAT malware is now cloaking its payloads as seemingly-innocent image files that are hidden on compromised websites.
Similar Posts
Russians Used Brute Force Attacks Against Hundreds of Orgs: Security Agencies
Security agencies in the United States and United Kingdom issued an advisory on Thursday to warn organizations about an ongoing global campaign involving brute force techniques. The NSA, CISA, FBI and the UK’s National Cyber Security Centre (NCSC) have attributed the campaign to the Russian government, specifically a cyber espionage group linked to Russia’s General…
House Passes Several Critical Infrastructure Cybersecurity Bills
The U.S. House of Representatives this week passed several cybersecurity bills, including ones related to critical infrastructure, industrial control systems (ICS), and grants for state and local governments. One of the bills focusing on critical infrastructure is the Cybersecurity Vulnerability Remediation Act, which aims to authorize the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) to…
Facebook Disrupts Iranian APT Campaign
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Social Media ‘Tortoiseshell’ Group Used the Social Network to Contact Targets Doug Olenick (DougOlenick) • July 15, 2021 Facebook’s threat intelligence team says it has disrupted an Iranian advanced persistent threat group that was using the social network as part of an effort…
Iranian Hackers Posed as Aerobics Instructors to Target Aerospace Employees
TA456 was discovered as the perpetrator of a social engineering and targeted malware campaign on behalf of the Iranian government after spending years impersonating an aerobics instructor on Facebook, according to Proofpoint. The Iranian state-sponsored cybercrime gang developed a contact with an employee working at a subsidiary of an aerospace defense contractor using the social…
CISA looks to tie together public-private partnerships through new cyber planning office
The Cybersecurity and Infrastructure Security Agency is teaming up with major cloud providers, cyber companies, and other private sector partners under a new initiative aimed at combining efforts on planning, threat analysis, and defensive operations. CISA Director Jen Easterly announced the establishment of the “Joint Cyber Defense Collaborative” at the Black Hat security conference today….
North Korean Group Targets Security Researchers
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Malware as-a-Service Google: Attackers Leverage Social Media Accounts Akshaya Asokan (asokan_akshaya) • April 2, 2021 Screenshot of the fake “SecuriElite” website (Source: Google TAG) A North Korean government-backed threat group that was detected targeting security researchers in January is once again staging a…