Microsoft found a malware campaign pushing the Astaroth info stealer into the memory of infected computers. This particular campaign was notable in its fileless distribution method and complex attack chain.
A newly discovered backdoor malware dubbed Godlua was discovered conducting DDoS attacks. Unique to this Lua-based malware is its abuse of the DNS over HTTPS (DoH) protocol to secure its communication channels.
Criminal sellers are peddling ready-to-use ATM malware in underground markets for hacking into banks. In this report, we discuss how criminals advertise and even provide instructions on how to pull off a digital heist.
The relatively new ransomware Sodinokibi is already using an array of vectors to infect victims. Aside from using spam and phishing emails, the group behind this malware continues to add more delivery methods to their arsenal.
Baltimore City and County governments, Ohio-based NEO Urology, and Talley Medical Surgical Eyecare in Indiana are still in recovery efforts after ransomware incidents caused daily operations to be temporarily suspended.