Τι είναι το LimeRAT: Το LimeRAT είναι ένα κακόβουλο πρόγραμμα(malware) ανοικτού κώδικα για απομακρυσμένη πρόσβαση (RAT), το οποίο έχει σχεδιαστεί για να παρέχει στους επιτιθέμενους έλεγχο ενός μολυσμένου συστήματος. Είναι ένα ισχυρό και ευέλικτο RAT που στοχεύει σε λειτουργικά συστήματα Windows. Το LimeRAT μπορεί να λειτουργήσει ως ransomware, cryptocurrency miner, information stealer, keystroke logger και […]
What is Venom Rat: Venom RAT is a remote access tool that targets Windows operating systems and allows attackers to gain full access and remote control of the victims' machines. It is typically distributed as malicious attachments in unwanted email messages, malicious advertisements, and other social engineering techniques. The main purpose [...]
What is Black Basta: Black Basta is a ransomware that emerged in April 2022, primarily targeting businesses. It has been observed that the ransomware appends the ".basta" extension to encrypted files. Common infection vectors for Black Basta include phishing attacks, torrent websites, and adware. The ransomware has two variants [...]
What is BlackCat Ransomware: BlackCat (also known as ALPHV, Noberus) was first detected in November 2021 and is considered one of the most advanced and threatening types of malware in 2021 and 2022. However, towards the end of 2022, the number of computers infected by BlackCat decreased by 28% [...]
Cobalt Strike is a red team control and command tool used for adversary simulation. Due to its capabilities and flexibility, it has gained wide acceptance among red teamers as well as malicious actors. Many threat actors such as APT29, APT32, APT41, APT19, UNC2452, FIN6 use illegal (cracked) versions of Cobalt Strike in their attacks.
Lockbit 3.0 ransomware : Lockbit is considered one of the most notorious and active ramsomware . Lockbit Ransomware uses a variety of techniques to target critical infrastructure and organizations around the world. Lockbit ransomware attacks primarily target devices running Windows operating system, using multiple techniques to initially [...]
Είναι γνωστό ότι το κακόβουλο λογισμικό χρησιμοποιεί τις υπηρεσίες του λειτουργικού συστήματος των Windows για να επιτύχει τους επιθυμητούς στόχους του επιτιθέμενου. Για παράδειγμα, μια υπηρεσία του λειτουργικού συστήματος των Windows, όπως το Vssadmin, μπορεί να χρησιμοποιηθεί από ransomware για να εμποδίσει τη δυνατότητα επαναφοράς του συστήματος από τα αντίγραφα ασφαλείας (backup) σε ένα μηχάνημα […]
The Follina (CVE-2022-30190) is a zero-day vulnerability in Microsoft Office that was discovered on May 27, 2022. It is a high-severity vulnerability that hackers can exploit for remote code execution (RCE) attacks. Remote code execution (RCE) refers to a category of cyber attacks where the attackers execute code on a targeted system remotely, without having physical access to it.
What is Sysjoker: Sysjoker is a malicious backdoor software that was first discovered in December 2021 by Intezer. It is sophisticated and written in C++. Sysjoker is a multi-platform malicious software that targets Windows, Linux, and macOS operating systems. Common attacks involving Sysjoker include email attachments, malicious...
What is Pandora Ransomware: Pandora ransomware is a type of malicious software that threatens computers by encrypting or blocking access to critical data or systems until a ransom is paid. It gained attention in March 2022 when DENSO, a well-known automotive manufacturer, was compromised. Following this, several malware researchers analyzed samples of Pandora...
