remote access Trojan – TFun dot org

Russian Espionage Group Updates Custom Malware Suite

28/10/202029/10/2020Tara Seals

Turla has outfitted a trio of backdoors with new C2 tricks and increased interop, as seen in an attack on a European government. Source: Threatpost.com Russian Espionage Group Updates Custom Malware Suite

Tenda Router Zero-Days Emerge in Spyware Botnet Campaign

05/10/202012/10/2020Tara Seals

A variant of the Mirai botnet, called Ttint, has added espionage capabilities to complement its denial-of-service functions. Source: Threatpost.com Tenda Router Zero-Days Emerge in Spyware Botnet Campaign

Hackers Continue Cyberattacks Against Vatican, Catholic Orgs

16/09/202017/09/2020Lindsey O Donnell

The China-linked threat group RedDelta has continued to launch cyberattacks against Catholic institutions since May 2020 until as recently as last week. Source: Threatpost.com Hackers Continue Cyberattacks Against Vatican, Catholic Orgs

Python-based Spy RAT Emerges to Target FinTech

03/09/202004/09/2020Tara Seals

The Evilnum APT has added the RAT to its arsenal as part of a big change-up in its TTPs. Source: Threatpost.com Python-based Spy RAT Emerges to Target FinTech

Triple-Threat Cryptocurrency RAT Mines, Steals and Harvests

02/09/202003/09/2020Tara Seals

KryptoCibule spreads via pirated software and game torrents. Source: Threatpost.com Triple-Threat Cryptocurrency RAT Mines, Steals and Harvests

Chinese APT Debuts Sepulcher Malware in Spear-Phishing Attacks

02/09/202002/09/2020Lindsey O Donnell

The RAT has been distributed in various campaigns over the past six months, targeting both European officials and Tibetan dissidents. Source: Threatpost.com Chinese APT Debuts Sepulcher Malware in Spear-Phishing Attacks

Agent Tesla Spyware Adds Fresh Tricks to Its Arsenal

12/08/202012/08/2020Tara Seals

The RAT is surging in 2020, becoming more prevalent than even the infamous TrickBot or Emotet malware. Source: Threatpost.com Agent Tesla Spyware Adds Fresh Tricks to Its Arsenal

Espionage Group Hits U.S. Utilities with Sophisticated Spy Tool

09/06/202009/06/2020Tara Seals

The FlowCloud modular remote-access trojan (RAT) has overlaps with the LookBack malware. Source: Threatpost.com Espionage Group Hits U.S. Utilities with Sophisticated Spy Tool

Octopus Scanner Sinks Tentacles into GitHub Repositories

02/06/202003/06/2020Tara Seals

At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain. Source: Threatpost.com Octopus Scanner Sinks Tentacles into GitHub Repositories

Turla APT Revamps One of Its Go-To Spy Tools

26/05/202026/05/2020Tara Seals

An updated version of the ComRAT malware was discovered in attacks on governmental targets. Source: Threatpost.com Turla APT Revamps One of Its Go-To Spy Tools