Verticals Targeted: Education, Government, Manufacturing, Technology, Healthcare, Various
Related Families: Cerber
A new Cerber variant tracked as C3RB3R was recently observed leveraging CVE-2023-22518.
Related Families: SpyNote, Ermac
SecuriDropper is a widely distributed dropper-as-a-service that bypasses Android Restricted Settings.
Verticals Targeted: Defense, Government, Technology
The MOVEit vulnerability tracked as CVE-2023-34362, was first observed in May 2023. It has since been observed targeting additional entities, including those in the technology, government, and defense verticals.
A wiper known as BiBi-Linux was recently observed targeting entities in Israel. A pro-Hamas hacktivist group was behind the attacks.
Verticals Targeted: Government, Defense, Telecommunications, Finance, NGO, IT services
Scarred Manticore, a threat actor group associated with Iran’s MOIS, was observed using Liontail framework in an espionage campaign.
XWorm is a .NET based, modular, multi-purpose malware family most often used as a RAT. CERT Polska analyzed an Xworm sample distributed via malspam containing an .lzh file.
Related Families: CurKeep, CurCore, CurLog, CurLu, StylerServ
Verticals Targeted: Telecommunications, Government