Malware experts have found a new sophisticated second-stage backdoor, called Sunshuttle, which was uploaded by a U.S.-based entity to a public malware repository in August 2020. An analysis published by FireEye reads: “Mandiant Threat Intelligence discovered a sample of the SUNSHUTTLE backdoor uploaded to an online multi-Antivirus scan service.” “SUNSHUTTLE Continue Reading
According to reports, Agent Tesla malware variants are now using new methods to try and eliminate endpoint antivirus security. The Windows spyware now targets Microsoft’s Antimalware Scan Interface (AMSI) in a bid to beat endpoint protection software, while also employing a multi-stage installation process and exploiting Tor and Telegram messaging Continue Reading
On Sunday, the cybercrime group behind the FonixCrypter ransomware announced on Twitter that they are set to shut down their operation. The FonixCrypter gang, as a gesture of goodwill towards past victims, has also released a package containing a decryption tool, how-to instructions, and the ransomware’s master decryption key. These Continue Reading
Cybersecurity firm Malwarebytes said that it was hacked by the same group that breached IT software company SolarWinds last year, adding to the rising list of key security companies targeted by the group. A Malwarebytes spokeswoman, in an emailed statement, said based on the methods of the attack, the company Continue Reading
Cybersecurity experts have revealed that a new spyware operation aiming users in Pakistan that influences trojanized versions of authentic Android apps to conduct clandestine surveillance and spying. Designed to subterfuge apps such as the Pakistan Citizen Portal, a Muslim prayer-clock app called Pakistan Salat Time, Mobile Packages Pakistan, Registered SIMs Continue Reading
By