Winnti Hackers Group Launching New Malware via Supply-chain Attacks to Inject Backdoor in Windows

Winnti

Researchers discovered a new malware campaign from the Winnti threat group that utilizes the supply-chain attacks with a new set of artifacts to inject a sophisticated backdoor in windows computers. Winnti group activities are being monitored since 2013, since then it continuously targeting various private sectors including Aviation, Gaming, Pharmaceuticals, Software development, Telecommunication and Technology that […]

The post Winnti Hackers Group Launching New Malware via Supply-chain Attacks to Inject Backdoor in Windows appeared first on GBHackers On Security.

Read more

Beware!! Iran Government Sponsored Hacker Group Phosphorus Attempt to Hack Email Accounts – Microsoft Warned

Beware!! Iran Government Sponsored Hacker Group Phosphorus Attempt to Hack Email Accounts – Microsoft Warned

Microsoft issued a serious warning about the recent cyber activities that target the Government and private sector to compromised the high profile email accounts. The attack believed to be initiated from Iran state-sponsored hacking group called Phosphorus and is linked with the Iran government to perform various cyber-attacks around the world. Microsoft tracking the Phosphorus […]

The post Beware!! Iran Government Sponsored Hacker Group Phosphorus Attempt to Hack Email Accounts – Microsoft Warned appeared first on GBHackers On Security.

Read more

Turla APT Hackers Using New Malware to Break The TLS Encrypted Web Traffic Communication

Turla APT Hackers Using New Malware to Break The TLS Encrypted Web Traffic Communication

Turla APT threat actors distribute a new malware called Reductor, a successor of COMpfun to compromise the TLS encrypted web traffic and infect the targeted network. Reductor malware has exclusive RAT functionality with the ability to such as uploading, downloading, and executing files on victims’ networks by manipulating digital certificates. Researchers believe that the malware […]

The post Turla APT Hackers Using New Malware to Break The TLS Encrypted Web Traffic Communication appeared first on GBHackers On Security.

Read more

Hackers Drop Spyware and Steal the Password, Credit card and Browers Data Using Telegram as a C2 Server

Masad Stealer

Researchers discovered a new trojan Masad Stealer to deliver the powerful spyware on the targeted systems and exfiltrate the stolen data via Telegram. Masad Stealer using Telegram as a command and control channel to maintain the anonymity and hide the malware communication traffic. Recent pas, several hacking groups are abusing the Telegram and used it […]

The post Hackers Drop Spyware and Steal the Password, Credit card and Browers Data Using Telegram as a C2 Server appeared first on GBHackers On Security.

Read more

REvil Ransomware links With GandCrab to Attack Windows Users via RDP Servers and Exploit kits

REvil Ransomware

A financially motivated hacking group called “GOLD SOUTHFIELD” launch a newly developed REvil Ransomware (aka Sodinokibi) which is used the GandCrab ransomware code and infected the Windows users around the world. Threat actors distributing various medium including software installers with backdoor capabilities, exploit kits, exploiting RDP servers, and scan-and-exploit techniques. Malware developers behind the GandCrab […]

The post REvil Ransomware links With GandCrab to Attack Windows Users via RDP Servers and Exploit kits appeared first on GBHackers On Security.

Read more