NEWS

Magecart gang hides PHP-based web shells in favicons

Magecart cybercrime gang is using favicon to hide malicious PHP web shells used to maintain remote access to inject JavaScript skimmers into online stores. Magecart hackers are distributing malicious PHP web shells hidden in website favicon to inject JavaScript e-skimmers into online stores and steal payment information. Researchers from Malwarebytes observed threat actors, likely Magecart … Continue reading Magecart gang hides PHP-based web shells in favicons

DarkSide ransomware servers reportedly seized, operation shuts down

The DarkSide ransomware operation has allegedly shut down after the threat actors lost access to servers and their cryptocurrency was transferred to an unknown wallet. This news was shared by a threat actor known as ‘UNKN’, the public-facing representative of the rival REvil ransomware gang, in a forum post first discovered by Recorded Future researcher … Continue reading DarkSide ransomware servers reportedly seized, operation shuts down

Software, Incident Response Among Big Focus Areas in Bidens Cybersecurity Executive Order

Software, Incident Response Among Big Focus Areas in Biden’s Cybersecurity Executive Order Overall objectives are good, but EO may be too prescriptive in parts, industry experts say. US President Joe Biden has issued an executive order (EO) seeking to strengthen federal cybersecurity amid growing concerns about threats to national security from attacks like the one … Continue reading Software, Incident Response Among Big Focus Areas in Bidens Cybersecurity Executive Order

FIN7 Backdoor Masquerades as Ethical Hacking Tool

The financially motivated cybercrime gang behind the Carbanak RAT is back with the Lizar malware, which can harvest all kinds of info from Windows machines. The notorious FIN7 cybercrime gang, a financially motivated group, is spreading a backdoor called Lizar under the guise of being a Windows pen-testing tool for ethical hackers. According to the … Continue reading FIN7 Backdoor Masquerades as Ethical Hacking Tool