Serpent 🐍 Backdoor hits France
A new backdoor dubbed Serpent has been discovered infecting French entities in the construction and government sectors. The backdoor is installed using new methods, which include steganography, Tor proxy and…
SockDetour Backdoor
A new tool called SockDetour has been discovered that acts as a backup backdoor if the original one is removed. Written in the 64-bit PE file format, stands out and…
Gold Dragon Backdoor
South Korean researchers have discovered a reformed wave of activity of Kimsuky hacking group, which includes using basic open-source remote access tools and their own backdoor, Gold Dragon. Kimsuky, also…
Posted inSecurity
Antlion APT linked with China
A cyberespionage campaign of a China-linked APT group tracked as Antlion is using a custom backdoor called xPack in attacks aimed at financial organizations and manufacturing companies gone detected more…
DazzleSpy Backdoor Targeting Democrats
A cyber-espionage malware targetting Apple's macOS operating system leveraged a Safari web browser exploit as part of a watering hole attack targeting politically active, pro-democracy individuals in Hong Kong which…
Ocean Lotus 🌸 Sophisticated Attack
The state-sponsored threat actor group known as OceanLotus is using the web archive file format to evade system detection while delivering backdoors for intrusion. A report claims that OceanLotus's campaign is actively…
WordPress AccessPress Theme Backdoored
Security researchers that the popular WordPress plugin and theme AccessPress were compromised, and their software replaced with backdoored versions. The compromise appears to have taken place in September of last…
SysJoker Backdoor Haunts Windows , Linux, macOS
A backdoor likely used by an APT actor in targeted attacks was built to target Windows, macOS, and Linux systems, Dubbed SysJoker, targeting the web server of an educational institution. In…