Displaying items by tag: Remote access trojan

A Maltese national has been arrested for allegedly targeting users in Australia and other countries with a remote access trojan or RAT, in a joint operation involving the Australian, Federal Police, Europol and the FBI.

GUEST RESEARCH: The latest OT/IoT security report from Nozomi Networks Labs finds wiper malware, IoT botnet activity, and the Russia/Ukraine war significantly influenced the 2022 threat landscape. Continuing the trend that was observed in the first half of 2022, Nozomi Networks Labs researchers saw hacktivists shift tactics from data theft and distributed denial of service (DDoS) attacks to utilising more destructive malware in an attempt to destabilise critical infrastructure to further their political stance in the Russia/Ukraine war.

A Chinese-state-aligned hacking group is targeting diplomatic entities in Europe as the war in Ukraine intensifies, using malicious email campaigns to deliver malware, according to Proofpoint cybersecurity researchers.

Security vendor WatchGuard Technologies has published its latest quarterly Internet Security Report. Findings for Q3 2021 include a decrease in total perimeter malware detection volume, although endpoint malware detections had already surpassed the total for 2020, with Q4 2021 data yet to be reported.

The Australian Cyber Security Centre has issued a warning to the health sector, saying it has seen increased targeting by attackers using the SDBBot remote access trojan.

The man who developed and sold a Windows remote access trojan known as Luminosity Link has been sentenced to 30 months in prison in the US and will also have to forfeit the proceeds he reaped from selling the software.

A new remote access trojan named Parasite HTTP uses macros in Microsoft Word documents to spread and is modular, allowing for the addition of new capabilities.

Malicious attackers have used the leaked source code of a popular remote access tool for Windows, known as Ammyy Admin, to create a remote access trojan which researchers at security firm Proofpoint have dubbed FlawedAmmyy.

A hacking tool known as Luminosity Link RAT, that allowed attackers to take control of Windows computers, has been taken off the Web, following an investigation by security officials in the UK, Europe, Australia and the US.

A campaign using a fake female persona to infect the Windows computers of people working in certain industries in the Middle East and North Africa with remote access trojans has been uncovered by the Counter Threat Unit of security company SecureWorks.