+1.813.321.0987

Over the last two weeks, SC Media shared the top three email-based threats, what they have in common and how you can protect your organization. Also, more details about the Maui ransomware that has been used against US healthcare operations has been linked to Andariel, a North Korean state-sponsored threat with links to the notorious Lazarus Group.

For more articles, check out our #onpatrol4malware blog.

Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux Users

Source: Trend Micro

Trend Micro found APT group Iron Tiger’s malware compromising chat application Mimi’s servers in a supply chain attack. They noticed a server hosting both a HyperBro sample and a malicious Mach-O executable named “rshell.” Read more.

SOVA Malware Is Back And Is Evolving Rapidly

Source: Cleafy

In September 2021, SOVA, a new Android Banking Trojan, was announced in a known underground forum. Even though at that time the author claimed the malware was still under development, it actually already had multiple capabilities and was basically almost in the go-to market phase. Read more.

Ransomware Is Not Going Anywhere: Attacks Are Up 24%

Source: Help Net Security

Avast released a report revealing a significant increase in global ransomware attacks, up 24% from Q1/2022. Researchers also uncovered a new zero-day exploit in Chrome, as well as signals how cybercriminals are preparing to move away from macros as an infection vector. Read more.

How To Stop Zeppelin Ransomware Attacks: CISA, FBI Mitigation Guidance

Source: MSSP Alert

Hackers have been using Zeppelin Ransomware to launch cyberattacks against businesses and critical infrastructure since at least 2019, according to a CISA and FBI warning issued today. Read more.

Which Malware Delivery Techniques Are Currently Favored By Attackers?

Source: Help Net Security

A wave of cybercriminals spreading malware families – including QakBot, IceID, Emotet, and RedLine Stealer – are shifting to shortcut (LNK) files for email malware delivery. Read more.

Maui Ransomware Linked to North Korean Group Andariel

Source: The Register

The Maui ransomware that has been used against US healthcare operations has been linked to Andariel, a North Korean state-sponsored threat with links to the notorious Lazarus Group. Read more.

What Are TheTop 3 Email Threats Today?

Source: SC Media

Security was never at the forefront of email design; as a service, email is intended specifically for the sharing of information. Here are the top three email-based threats, what they have in common and how you can protect your organization. Read more.

Dark Utilities C2 Service Draws Thousands Of Cyber Criminals

Source: The Register

A platform that makes it easier for cyber criminals to establish command-and-control (C2) servers has already attracted 3,000 users since launching earlier this year, and will likely expand its client list in the coming months. Read more.