Purple Fox Spreads via Fake Telegram App

Purple Fox Spreads via Fake Telegram App

Threat actors are using weaponized installers of the Telegram messaging application to deliver the Purple Fox backdoor on Windows systems. Researchers pointed out that this campaign, unlike similar ones leveraging legitimate software…
Backdoor in Auerswald Devices

Backdoor in Auerswald Devices

Researchers discovered multiple backdoors in a popular VoIP appliance of German manufacturer Auerswald allowing adminstrative access once infected. Reverse engineering of the firmware image has been performed for the COMpact…
Magnat Attack planting Backdoor

Magnat Attack planting Backdoor

Researchers have identified malvertising campaigns using fake installers of popular games and applications, such as WeChat, Viber, Battlefield, and NoxPlayer, to lure users into downloading an undocumented, malicious Google Chrome…
Tomiris backdoor linked to Nobelium

Tomiris backdoor linked to Nobelium

Researchers discovered new malware containing several attributes that potentially connect it to DarkHalo, the threat actor behind the Sunburst attack in connection with SolarWinds. The DarkHalo compromised a widely used…
Zloader defends.. Evades Defender
Posted inSecurity

Zloader defends.. Evades Defender

An ongoing Zloader campaign uses a new infection chain to disable Microsoft Defender Antivirus to evade detection. The attackers have also changed the malware delivery vector from spam or phishing…
SARDONIC Backdoor – FIN8

SARDONIC Backdoor – FIN8

FIN8 has added a potent new backdoor to its arsenal and is already using it in attacks in-the-wild targeting of POS systems, but appears to have strengthened its portfolio with…