From infostealer to full RAT: dissecting the PureRAT attack chain

Researchers map a campaign that escalated from a Python infostealer to a full PureRAT backdoor — loaders, evasions, and ...

Massive multi-country botnet targets RDP services in the US

A large-scale botnet is targeting Remote Desktop Protocol (RDP) services in the United States from more than 100,000 IP ...
Decrypt

Astaroth Banking Trojan Harnessing GitHub to Steal Crypto Credentials

The keylogging malware is capable of using GitHub to redirect itself to new servers whenever existing servers go offline.

Biden vows to punish those behind hack against U.S. government

U.S. President-Elect Joe Biden said Thursday that a recently uncovered far-reaching cybersecurity breach against the U.S. government was a matter of "great concern" and vowed swift action in response ...
SecurityWeek

RondoDox Botnet Takes ‘Exploit Shotgun’ Approach

RondoDox botnet takes a ‘shotgun’ approach to hacking devices, packing 50 exploits targeting routers, servers, cameras, and ...
SecurityWeek

NPM Infrastructure Abused in Phishing Campaign Aimed at Industrial and Electronics Firms

Threat actors are abusing legitimate NPM infrastructure in a new phishing campaign that breaks from the typical supply chain attack pattern.