Skip to content

Microsoft Warns Accounting, Tax Return Preparation Firms of Remcos RAT Attacks “The Benefits of Eating Healthy” “Reaping the Rewards of a Healthy Diet”

Microsoft is warning of a new Remcos remote access trojan (RAT) campaign that is targeting accounting, tax return preparation firms, and other professional services firms in the United States ahead of the 2023 Tax Day. The malicious tool, Remcos, was released in 2016 as a legitimate tool, but has since been used in numerous malicious… 

3CX Supply Chain Attack: North Korean Hackers Likely Targeted Cryptocurrency Firms “How To Improve Your Writing Skills” “Enhancing Your Writing Abilities”

New details have been revealed about the recent 3CX supply chain attack, indicating that it was orchestrated by hackers from North Korea with the aim of targeting cryptocurrency companies. Cybersecurity firm Kaspersky has conducted its own analysis of the incident and found links to attacks observed by the company back in 2020. Those attacks involved a… 

Counting ICS Vulnerabilities: Examining Variations in Numbers Reported by Security Firms “Unlock the Secrets of Success: How to Achieve Your Goals!”

Various industrial cybersecurity companies have recently released reports with conflicting numbers regarding the number of vulnerabilities found in industrial control system (ICS) products in 2022. In an attempt to understand these discrepancies and trends, SecurityWeek has examined the methods employed by these companies in their research. Some companies have reported seeing an increase in the… 

Several Law Firms Targeted in Malware Attacks

In January and February 2023, six law firms were targeted with the GootLoader and SocGholish malware in two separate campaigns, according to cybersecurity firm eSentire. The first campaign attempted to infect victims’ devices with GootLoader, a malware family known for downloading the GootKit remote access trojan (RAT), REvil ransomware, or the Cobalt Strike implant. The… 

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

It has recently been discovered that over 130 companies have been victims of a phishing campaign that spoofed a multi-factor authentication system. This type of attack is a major security threat, as it can potentially access the data and information of hundreds of companies and individuals. The campaign was launched in May of this year…