Remove 03
Remove 2018 Remove Data Remove Information Security Remove Security
article thumbnail

Apr 10 – Apr 16 Ukraine – Russia the silent cyber conflict

Security Affairs

This post provides a timeline of the events related to the Russian invasion of Ukraine from the cyber security perspective. This week the Anonymous collective and its affiliates have targeted multiple Russian organizations stealing gigabytes of data. Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict. Pierluigi Paganini.

article thumbnail

[SI-LAB] EMOTET spread in Chile impacted hundreds of users and targeted financial and banking services

Security Affairs

The latter leverages the WinRar/Ace vulnerability ( CVE-2018-20250 ) dropping the malware itself into the Windows startup folder. The first alert related to this wave was observed on March 22nd by The Computer Security Certified Response Team (CSIRT), of the Ministry of the Interior from Chile. Technical Analysis.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

The Evolution of Aggah: From Roma225 to the RG Campaign

Security Affairs

Few weeks ago, Unit42 discovered another active campaign , compatible with the Roma225 one we tracked on December 2018, pointing to some interesting changes into the attackers TTPs. Since December 2018, we are following the tracks of this ambiguous cyber criminal group, internally referenced as TH-173. The Hagga Pastes. Conclusion.

article thumbnail

MuddyWater APT group updated its multi-stage PowerShell backdoor Powerstats

Security Affairs

Security experts at Trend Micro report that the MuddyWater APT group (aka SeedWorm and TEMP.Zagros ), has used an updated multi-stage PowerShell backdoor in recent cyber espionage campaigns. The macro was used to drop a VBE file that holds a block of data containing an obfuscated PowerShell script. . Pierluigi Paganini.

IT 64