Aggregator

这个新样本拥有新的混淆和规避技术，例如将恶意功能移动到混淆的本机库中，使用证书固定进行 C2 通信，并执行一系列测试来检查 Mandrake 是在 root 设备上运行还是在模拟环境中运行。

看雪论坛作者ID：GhHei

Учёные из Уругвая раскрыли невидимую брешь в цифровой защите.

专属SRC8月福利活动来袭！

Как стартап открывает парализованным людям дверь в мир технологий.

多数受害者位于印度和俄罗斯，不过巴西、墨西哥和美国也有不少受害者。

速修复

Companies in Russia and Moldova have been the target of a phishing campaign orchestrated by a little-known cyber espionage group known as XDSpy. The findings come from cybersecurity firm F.A.C.C.T., which said the infection chains lead to the deployment of a malware called DSDownloader. The activity was observed this month, it added. XDSpy is a threat actor of indeterminate origin that was first

Компания F.A.C.C.T. проанализировала вредоносные рассылки во втором квартале 2024 г.

Our team recently uncovered a malware distribution campaign for a threat we’ve named DeerStealer.  The malware was spread through fake Google Authenticator websites, captured in this analysis session.  The site appears to be a Google page offering the application for download. The first site we discovered, authentificcatorgoolglte[.]com, mimics safety.google/intl/en_my/cybersecurity-advancements:  Clicking the Download button sends visitor […]

The post Brief Overview of the DeerStealer Distribution Campaign  appeared first on ANY.RUN's Cybersecurity Blog.

IBM reveals a 10% increase in the global cost of a data breach to $4.9m

ISC.AI 2024、新耀东方上安会、XCon、KCon……

“以模制模”助力安全行业新变革。

深入分析近一年的网络攻防态势和技术动态，为企业接下来的安全建设提供洞见。