Trojanized Application Preying on TeamViewer Users
Cyble Research & Intelligence Labs analyzes a trojanized version of the TeamViewer application and how it distributes njRAT. The post Trojanized Application Preying on TeamViewer Users appeared...
View ArticleThreat Actor Targeting Developers via Trojanized MS Visual Studio
Cookie Stealer Leveraging Telegram for Data Exfiltration Microsoft’s Visual Studio is a highly popular Integrated Development Environment (IDE) that empowers developers to create diverse...
View ArticleUnveiling the Stealthy Exploitation of Microsoft CMSTP Using Malicious LNK Files
Cyble Research & Intelligence Labs analyzes an infection chain leveraging CMSTP for executing malware payloads. The post Unveiling the Stealthy Exploitation of Microsoft CMSTP Using Malicious LNK...
View ArticleThreat Actor Employs PowerShell-Backed Steganography in Recent Spam Campaigns
CRIL analyzes a recent spam campaign that utilizes PowerShell-Backed Steganography employed by a threat actor for Malware Dissemination. The post Threat Actor Employs PowerShell-Backed Steganography in...
View ArticleEmerging Threat: Understanding the PySilon Discord RAT’s Versatile Features
Cyble Research and Intelligence Labs analyzes the Emerging PySilon Discord RAT and Explores its Versatile functionalities. The post Emerging Threat: Understanding the PySilon Discord RAT’s Versatile...
View ArticleNew Persian Remote World Selling a Suite of Malicious Tools
CRIL analyzes a new website - Persian Remote World - selling malicious software, including RATs and Malware loaders, for monetary gain. The post New Persian Remote World Selling a Suite of Malicious...
View ArticleGreenbean: Latest Android Banking Trojan Leveraging Simple RealTime Server...
Cyble analyzes GreenBean, a new Android Banking Trojan leveraging Simple RealTime Server (SRS) for C&C Communication The post Greenbean: Latest Android Banking Trojan Leveraging Simple RealTime...
View ArticleThe Fate of the CriminalMW Group: Endgame or a New Rebranding Journey?
CRIL analyzes the Brazilian CriminalMW Group's activities and their rebranding tactics. The post The Fate of the CriminalMW Group: Endgame or a New Rebranding Journey? appeared first on Cyble.
View ArticleClik here to view.
Brokewell: A New Android Banking Trojan Targeting Users In Germany
Key Takeaways A new Android Banking Trojan, "Brokewell", was identified as distributing via a fake Chrome Update phishing site. The malware's development is attributed to the developer, "Baron...
View ArticleClik here to view.
New Antidot Android Banking Trojan Masquerading as Fake Google Play Updates
Key Takeaways A new Android Banking Trojan, “Antidot,” masquerading as a Google Play update application, displays fake Google Play update pages in multiple languages, indicating a wide range of...
View ArticleClik here to view.
Cryptocurrency Lures and Pupy RAT: Analysing the UTG-Q-010 Campaign
Key Takeaways Cyble Research and Intelligence Labs (CRIL) recently identified a campaign utilizing a Windows shortcut (LNK) file, which has been linked to the UTG-Q-010 group. This group, a...
View ArticleClik here to view.
The Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government
Key takeaways Cyble Research and Intelligence Lab (CRIL) has identified a highly targeted cyber-attack aimed at political figures and government officials, in Malaysia. The attack showcases the...
View Article