C2 servers

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

APT-News

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

The U.S. Department of State has escalated its efforts to combat state-sponsored cyber threats by offering a...

Outlaw Cybergang Escalates Linux Attacks with New SSH Brute-Force Tactics

APT-News

Outlaw Cybergang Escalates Linux Attacks with New SSH Brute-Force Tactics

The Outlaw cybergang, also known as “Dota,” has intensified its global campaign against Linux systems, deploying a...

Exploitation of Cloudflare Tunnels for RAT Delivery: Tactics, IoCs, and Mitigation

Threat Intelligence

Exploitation of Cloudflare Tunnels for RAT Delivery: Tactics, IoCs, and Mitigation

Cybercriminals and advanced persistent threat (APT) actors are abusing Cloudflare’s free tunneling service, “TryCloudflare,” to distribute remote...

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

Malware Analysis

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

An alleged operator of the SmokeLoader malware, identified as Nicholas Moses (alias “scrublord”), is facing federal hacking...

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Malware Analysis

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Elastic Security Labs has uncovered a sophisticated malware campaign targeting Iraq’s telecommunications sector, utilizing a new malware...

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

Malware Analysis

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

A newly discovered malware campaign is leveraging the JPHP interpreter – a PHP implementation running on the...

Fake Zoom Installers Deliver Backdoor.Win32.DEVILSHADOW.THEAABO Malware

Malware Analysis

Fake Zoom Installers Deliver Backdoor.Win32.DEVILSHADOW.THEAABO Malware

A newly identified backdoor malware, Backdoor.Win32.DEVILSHADOW.THEAABO, has been discovered embedded in counterfeit Zoom installer packages. This threat...

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

APT-News

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

In a significant cybersecurity development, Kaspersky has uncovered evidence suggesting that two known threat activity clusters, Head...

C2 servers

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

Outlaw Cybergang Escalates Linux Attacks with New SSH Brute-Force Tactics

Exploitation of Cloudflare Tunnels for RAT Delivery: Tactics, IoCs, and Mitigation

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

Fake Zoom Installers Deliver Backdoor.Win32.DEVILSHADOW.THEAABO Malware

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected