Tag: rat
-
Hackers Use Trump’s Coin, Binance’s Name in Crypto Phishing Scam
Threat actors are running an email phishing scam to entice victims to install Binance software in hopes of collecting TRUMP coins. However, if they try, they instead get the ConnectWise RAT installed on their systems, which could let the malware steal sensitive information from the compromised machines. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/hackers-use-trumps-coin-binances-name-in-crypto-phishing-scam/
-
The Rise of XWorm RAT: What Cybersecurity Teams Need to Know Now
by
in SecurityNewsThe Rise of XWorm RAT: What Cybersecurity Teams Need to Know Now First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/the-rise-of-xworm-rat-what-cybersecurity-teams-need-to-know-now/
-
DCRat Malware Spreading via YouTube to Steal Login Credentials
by
in SecurityNewsCybersecurity researchers have identified a renewed wave of attacks involving the Dark Crystal RAT (DCRat), a dangerous remote access Trojan that has resurfaced through a Malware-as-a-Service (MaaS) model. Attackers are actively targeting gamers by distributing malicious software disguised as gaming cheats and cracks, primarily through YouTube. Malware Distribution Exploits YouTube Platform The attackers behind DCRat…
-
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
by
in SecurityNewsThe threat actor known as Blind Eagle has been linked to a series of ongoing campaigns targeting Colombian institutions and government entities since November 2024.”The monitored campaigns targeted Colombian judicial institutions and other government or private organizations, with high infection rates,” Check Point said in a new analysis.”More than 1,600 victims were affected during one…
-
Binance Spoofers Compromise PCs in ‘TRUMP’ Crypto Scam
An email campaign luring users with offers of free President Trump meme coins can lead to computer takeover via the ConnectWise RAT, in less than 2 minutes. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/binance-spoofers-compromise-pcs-trump-crypto-scam
-
Dark Caracal targets Latin America with Poco RAT malware
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/dark-caracal-targets-latin-america-with-poco-rat-malware
-
Breach Roundup: US Sanctions Iran-Based Nemesis Admin
by
in SecurityNewsAlso, BianLian Ransomware Hackers Aren’t Really Mailing You. This week, the U.S. sanctioned the Nemesis admin, Poco RAT spotted in Latin America, Apple challenged a British order to weaken encryption and the FBI warned against scam letters purportedly from BianLian. Also, a Nigerian tax scammer extradited to the U.S., a new botnet and a Webex…
-
LinkedIn InMail Spoofing Malware Campaign Unleashes ConnectWise RAT
LinkedIn InMail spoofing delivers the ConnectWise RAT via outdated branding and weak email security, posing a significant risk to organizations. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/cybersecurity/linkedin-inmail-spoofing-connectwise-rat-threat/
-
Dark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin America
by
in SecurityNewsThe threat actor known as Dark Caracal has been attributed to a campaign that deployed a remote access trojan called Poco RAT in attacks targeting Spanish-speaking targets in Latin America in 2024.The findings come from Russian cybersecurity company Positive Technologies, which described the malware as loaded with a “full suite of espionage features.””It could upload…
-
New Poco RAT Via Weaponized PDF Attacking Users to Capture Sensitive Data
A new variant of malware, dubbed >>Poco RAT,
-
5 Active Malware Campaigns in Q1 2025
by
in SecurityNewsThe first quarter of 2025 has been a battlefield in the world of cybersecurity. Cybercriminals continued launching aggressive new campaigns and refining their attack methods.Below is an overview of five notable malware families, accompanied by analyses conducted in controlled environments.NetSupport RAT Exploiting the ClickFix TechniqueIn early 2025, threat actors began exploiting a technique First seen…
-
2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RAT
by
in SecurityNewsA large-scale malware campaign has been found leveraging a vulnerable Windows driver associated with Adlice’s product suite to sidestep detection efforts and deliver the Gh0st RAT malware.”To further evade detection, the attackers deliberately generated multiple variants (with different hashes) of the 2.0.2 driver by modifying specific PE parts while keeping the signature valid,” Check Point…
-
CaaS Surges in 2025, Along With RATs, Ransomware
by
in SecurityNewsCybercrime-as-a-Service (CaaS) now accounts for 57% of all cyberthreats, marking a 17% increase from the first half of 2024, according to Darktrace’s Annual Threat Report. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/caas-surges-in-2025-along-with-rats-ransomware/
-
Btmob RAT: A New Evolution of Android Malware Targets Users via Phishing Sites
A newly discovered Android malware, Btmob RAT, has been identified as a major threat to mobile users. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/btmob-rat/
-
SystemBC RAT Now Targets Linux, Spreading Ransomware and Infostealers
by
in SecurityNewsSystemBC RAT now targets Linux, enabling ransomware gangs like Ryuk Conti to spread, evade detection, and maintain encrypted C2 traffic for stealthy cyberattacks. First seen on hackread.com Jump to article: hackread.com/systembc-rat-targets-linux-ransomware-infostealers/
-
Threat Actors Exploit ClickFix to Deploy NetSupport RAT in Latest Cyber Attacks
Threat actors have observed the increasingly common ClickFix technique to deliver a remote access trojan named NetSupport RAT since early January 2025.NetSupport RAT, typically propagated via bogus websites and fake browser updates, grants attackers full control over the victim’s host, allowing them to monitor the device’s screen in real-time, control the keyboard and mouse, upload…
-
Die besten DAST- & SAST-Tools
by
in SecurityNews
Tags: access, ai, api, application-security, authentication, awareness, cloud, cyberattack, cybersecurity, docker, framework, HIPAA, injection, PCI, rat, risk, risk-management, service, software, sql, supply-chain, tool, vulnerability, vulnerability-managementTools für Dynamic und Static Application Security Testing helfen Entwicklern, ihren Quellcode zu härten. Wir zeigen Ihnen die besten Tools zu diesem Zweck.Die Softwarelieferkette respektive ihre Schwachstellen haben in den vergangenen Jahren für viel Wirbel gesorgt. Ein besonders schlagzeilenträchtiges Beispiel ist der Angriff auf den IT-Dienstleister SolarWinds, bei dem mehr als 18.000 Kundenunternehmen betroffen waren.…
-
NetSupport RAT Grant Attackers Full Access to Victims Systems
by
in SecurityNewsThe eSentire Threat Response Unit (TRU) has reported a significant rise in incidents involving the NetSupport Remote Access Trojan (RAT) since January 2025. This malicious software, originally designed as a legitimate IT support tool, has been weaponized by cybercriminals to gain full control over victim systems. Attackers leveraging NetSupport RAT can monitor screens, control input…
-
NanoCore RAT Attack Windows Using Task Scheduler to Captures keystrokes, screenshots
by
in SecurityNewsNanoCore, a notorious Remote Access Trojan (RAT), continues to pose a significant threat to Windows systems. This malware, known for its espionage capabilities and modular design, is being leveraged by cybercriminals to exfiltrate sensitive data, control infected systems, and maintain persistence using advanced techniques. A recent analysis of a NanoCore sample (MD5 hash: 18B476D37244CB0B435D7B06912E9193) sheds…
-
SmartApeSG Campaign Uncovered: A Deep Dive into NetSupport RAT Distribution and Suspected Threat Actor Connections
by
in SecurityNewsA recent investigation by Team Cymru has revealed an intricate web of malicious infrastructure linking the SmartApeSG FakeUpdate First seen on securityonline.info Jump to article: securityonline.info/smartapesg-campaign-uncovered-a-deep-dive-into-netsupport-rat-distribution-and-suspected-threat-actor-connections/
-
18,459 Devices Compromised Worldwide Via XWorm RAT Builder
by
in SecurityNews
Tags: ratFirst seen on scworld.com Jump to article: www.scworld.com/brief/18459-devices-compromised-worldwide-via-xworm-rat-builder
-
XWorm RAT builder leveraged for widespread device compromise
by
in SecurityNews
Tags: ratFirst seen on scworld.com Jump to article: www.scworld.com/brief/xworm-rat-builder-leveraged-for-widespread-device-compromise
-
Weaponised XWorm RAT Builder Attacking Script Kiddies To Hack 18,000 Devices
by
in SecurityNewsA recent cybersecurity attack involving a Trojanized version of the XWorm Remote Access Trojan (RAT) builder has compromised over 18,000 devices worldwide. This sophisticated malware, primarily distributed via GitHub repositories, Telegram channels, and other platforms, has targeted cybersecurity novices, also known as >>script kiddies,
-
Rat der Verbraucherzentrale zur ePA: Entweder aktive Pflege oder grundsätzlicher Widerspruch
by
in SecurityNews
Tags: ratFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/rat-verbraucherzentrale-epa-aktivitaet-pflege-grundsatz-widerspruch
-
New NonEuclid RAT Evades Antivirus and Encrypts Critical Files
A NonEuclid sophisticated C# Remote Access Trojan (RAT) designed for the.NET Framework 4.8 has been shown to pose a significant and ever-evolving cyber threat. The malware leverages a multifaceted approach to evade detection and maintain persistence, employing advanced techniques such as antivirus bypass, anti-detection mechanisms, anti-virtual machine checks, rootkit-like capabilities to conceal its presence, and…
-
Advanced evasion techniques leveraged by novel NonEuclid RAT
by
in SecurityNews
Tags: ratFirst seen on scworld.com Jump to article: www.scworld.com/brief/advanced-evasion-techniques-leveraged-by-novel-noneuclid-rat
-
Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques
by
in SecurityNewsCybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems.”The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques,” Cyfirma said in a technical analysis published last week.”It employs First…
-
Hackers Mimic Social Security Administration To Deliver ConnectWise RAT
by
in SecurityNewsA phishing campaign spoofing the United States Social Security Administration emerged in September 2024, delivering emails with embedded links to a ConnectWise Remote Access Trojan (RAT) installer. These emails, disguised as updated benefits statements, employed various techniques, including mismatched links and >>View Statement
-
Hackers Exploit Social Security Administration Branding to Deliver ConnectWise RAT
In a concerning escalation of phishing tactics, hackers are spoofing the United States Social Security Administration (SSA) to First seen on securityonline.info Jump to article: securityonline.info/hackers-exploit-social-security-administration-branding-to-deliver-connectwise-rat/