Windows systems have been subjected to attacks involving a new group of malware droppers collectively called TicTacToe that enabled the distribution of various final-stage payloads, including AgentTesla, Remcos, LokiBot, and SnakeLogger, during the past year, reports Hackread.
Eight spyware firms in Spain, Italy, and the United Arab Emirates including Variston IT, Mollitiam Industries, TrueL IT, Cy4Gate, RCS Labs, Negg Group, IPS Intelligence, and Protect Electronic Systems had their networks of fraudulent accounts on Facebook, Instagram, and WhatsApp dismantled by Meta during the last three months of 2023 as part of its efforts to crack down on spyware, reports CyberScoop.
Widespread attacks spreading the Glupteba malware in November involved the integration of a newly discovered EfiGuard Unified Extensible Firmware Interface bootkit that has provided the botnet with self-concealment and increased stealth through the deactivation of Driver Signature Enforcement and PatchGuard, The Hacker News reports.
Thousands of organizations across the U.S. have been targeted by a new phishing campaign deploying the Bumblebee malware, which was last observed in the wild in September, according to BleepingComputer.
Updated Raspberry Robin malware emerges Several updates have been introduced to the Raspberry Robin malware, also known as QNAP worm, including its usage of two new exploits for one-day vulnerabilities, tracked as CVE-2023-36802 and CVE-2023-29360, reports The Hacker News.