Cyber Attacks - SLYTECH

The Haskers gang freely distributes ZingoStealer malware to other cybercriminals.

Leave a Comment / Cyber Attacks / Sly Uduosa

Haskers Gang, a crimeware-related threat actor, has distributed ZingoStealer, an information-stealing malware, for free on the internet, allowing other criminal groups to use it for nefarious purposes. In a study posted with The Hacker News, Cisco Talos researchers Edmund Brumaghin and Vanja Svajcer noted, “It features the capacity to collect personal information from users and […]

The Haskers gang freely distributes ZingoStealer malware to other cybercriminals. Read More »

Cybercriminals and IP Addresses

Leave a Comment / Cyber Attacks / Sly Uduosa

You don’t like having the FBI knocking on your door at 6 am in the morning. Surprisingly, nor does your usual cybercriminal. That is why they hide (at least the good ones), for example, behind layers of proxies, VPNs, or TOR nodes. Their IP address will never be exposed directly to the target’s machine. Cybercriminals

Cybercriminals and IP Addresses Read More »

Taiwanese Financial Trading Sector Suffers Cyber Attack by Chinese Hackers

Leave a Comment / Cyber Attacks / Sly Uduosa

Hackers aligned with objectives of the Chinese government have been linked to an organized supply chain attack on Taiwan’s financial sector. These attacks first commenced at the end of November 2021, with the intrusions attributed to a threat actor tracked as APT10, also known as Stone Panda, the MenuPass group and Bronze Riverside, and known

Taiwanese Financial Trading Sector Suffers Cyber Attack by Chinese Hackers Read More »

Interpol Arrests 11 Members of a Nigerian Cybercrime Gang

Leave a Comment / Cyber Attacks / Sly Uduosa

11 members of a Nigerian cybercrime gang known for perpetrating business email compromise (BEC) have been apprehended by a coordinated law enforcement operation. This comes after a ten-day investigation dubbed Operation Falcon II undertaken by the Interpol along with participation from the Nigeria Police Force’s Cybercrime Police Unit in December 2021. Group-IB and Palo Alto

Interpol Arrests 11 Members of a Nigerian Cybercrime Gang Read More »

Europol Shuts Down VPNLab Popularly Used By Cybercriminals

Leave a Comment / Cyber Attacks / Sly Uduosa

The popular VPNLab.net used by malicious actors to deploy ransomware has been taken offline following a coordinated law enforcement operation. Europol stated that it took action against the misuse of the VPN service by grounding 15 of its servers on January 17 thus rendering it inoperable as part of a disruptive action that took place

Europol Shuts Down VPNLab Popularly Used By Cybercriminals Read More »

Chinese Hackers Target Academic Institution Using Log4Shell Exploit

Leave a Comment / Cyber Attacks / Sly Uduosa

Aquatic Panda a China-based targeted intrusion has been observed leveraging critical flaws in the Apache Log4j logging library as an access vector to perform various post-exploitation operations, including reconnaissance and credential harvesting on targeted systems. Crowdstrike a cybersecurity firm stated that the infiltration which was foiled was aimed at an unnamed “large academic institution”. The

Chinese Hackers Target Academic Institution Using Log4Shell Exploit Read More »

Malicious Web Domain Used By Chinese Hackers Seized by Microsoft

Leave a Comment / Cyber Attacks / Sly Uduosa

Microsoft has announced the seizure of 42 domains used by Nickel a China-based cyber espionage group which has its sights on organizations in the U.S. and 28 other countries. Nickel has targeted organizations in both private and public sectors including diplomatic organizations and ministries of foreign affairs in North America, Central America, South America, Europe

Malicious Web Domain Used By Chinese Hackers Seized by Microsoft Read More »

Credential Theft Campaign Linked To North Korean Hackers

Leave a Comment / Cyber Attacks / Sly Uduosa

Enterprise security firm Proofpoint has linked TA406, a North Korean threat actor to a wave of credential theft campaigns targeting research, education and government with two of the attacks aimed at distributing malware which could be used for intelligence gathering. TA406 also known as Kimsuky came into operations as early as 2012 emerging as one

Credential Theft Campaign Linked To North Korean Hackers Read More »

RedCurl The Corporate Espionage Hacker Group Returns

Leave a Comment / Cyber Attacks / Sly Uduosa

After a seven month hiatus, the Russian-speaking cyber-espionage group RedCurl returns. With their arrival on the scene, the group has targeted 4 companies including a large retail store in Russia as well as improving on its toolset in an attempt to thwart analysis and antivirus detection. The group became active in November 2018 with attacks

RedCurl The Corporate Espionage Hacker Group Returns Read More »

Conti Ransomware Group Secrets Exposed

Leave a Comment / Cyber Attacks / Sly Uduosa

The dark web payment portal operated by Conti the ransomware group has gone down in what appears to be a shift to a new infrastructure after details of inner working of the group was made public. According to MalwareHunterTeam, “while both the clearweb and Tor domains of the leak site of the Conti ransomware gang

Conti Ransomware Group Secrets Exposed Read More »