Yahoo Finance

ESET Research: One of Russia’s most notorious groups, Sednit, resurges with spyware in Ukraine

ESET researchers have traced the reactivation of Sednit’s advanced implant team to a 2024 case in Ukraine, where a keylogger named SlimAgent was deployed. During that operation, BeardShell, a second ...
The Hacker News

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

VOID#GEIST malware campaign delivers XWorm, AsyncRAT, and Xeno RAT using batch scripts, Python loaders, and explorer.exe ...
WeLiveSecurity

Sednit reloaded: Back in the trenches

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

Microsoft warns of OAuth phishing campaigns able to bypass email and browser defenses

An OAuth feature is being abused in the wild to drop malware to people's computers.
Microsoft

Signed malware impersonating workplace apps deploys RMM backdoors

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
Bleeping Computer

APT28 hackers deploy customized variant of Covenant open-source tool

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations. Researchers at cybersecurity ...
SourceSecurity

Lenel LNL-600X6-CE220 access control system power supply with surge protection, and thermal overload protection

The LNL-400X-CE220 is power-limited supply/charger that converts a 230 VAC, 60Hz input into a power limited 12 VDC or 24 VDC output. Includes tamper switch and short circuit protection. Dimensions ...