CISO2CISO.COM & CYBER SECURITY GROUP

securelist.com

Russian organizations targeted by backdoor masquerading as secure networking software updates – Source: securelist.com

Source: securelist.com - Author: Igor Kuznetsov, Georgy Kucherin, Alexander Demidov As we were looking into a...

Lumma Stealer – Tracking distribution channels – Source: securelist.com

Source: securelist.com - Author: Elsayed Elrefaei, Ahmed Daif, Mohamed Ghobashy Introduction The evolution of Malware-as-a-Service (MaaS)...

securelist.com

Phishing attacks leveraging HTML code inside SVG files – Source: securelist.com

Source: securelist.com - Author: Roman Dedenok With each passing year, phishing attacks feature more and more...

securelist.com

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia – Source: securelist.com

Source: securelist.com - Author: GReAT Day after day, threat actors create new malware to use in...

securelist.com

Streamlining detection engineering in security operation centers – Source: securelist.com

Source: securelist.com - Author: Sarim Rafiq Uddin Security operations centers (SOCs) exist to protect organizations from...

securelist.com

GOFFEE continues to attack organizations in Russia – Source: securelist.com

Source: securelist.com - Author: Oleg Kupreev GOFFEE is a threat actor that first came to our...

securelist.com

Attackers distributing a miner and the ClipBanker Trojan via SourceForge – Source: securelist.com

Source: securelist.com - Author: AMR Recently, we noticed a rather unique scheme for distributing malware that...

securelist.com

How ToddyCat tried to hide behind AV software – Source: securelist.com

Source: securelist.com - Author: Andrey Gunkin To hide their activity in infected systems, APT groups resort...

securelist.com

A journey into forgotten Null Session and MS-RPC interfaces, part 2 – Source: securelist.com

Source: securelist.com - Author: Haidar Kabibo In the first part of our research, I demonstrated how...

securelist.com

TookPS: DeepSeek isn’t the only game in town – Source: securelist.com

Source: securelist.com - Author: Vasily Kolesnikov, Oleg Kupreev In early March, we published a study detailing...

securelist.com

Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain – Source: securelist.com

Source: securelist.com - Author: Igor Kuznetsov, Boris Larin Incidents Incidents 25 Mar 2025 minute read In...

securelist.com

Financial cyberthreats in 2024 – Source: securelist.com

Source: securelist.com - Author: Kaspersky As more and more financial transactions are conducted in digital form...

securelist.com

Threat landscape for industrial automation systems in Q4 2024 – Source: securelist.com

Source: securelist.com - Author: Kaspersky ICS CERT Statistics across all threats In Q4 2024, the percentage...

securelist.com

Arcane stealer: We want all your data – Source: securelist.com

Source: securelist.com - Author: AMR Malware reports Malware reports 19 Mar 2025 minute read At the...

securelist.com

Head Mare and Twelve join forces to attack Russian entities – Source: securelist.com

Source: securelist.com - Author: Kaspersky Introduction In September 2024, a series of attacks targeted Russian companies,...

securelist.com

Incident response analyst report 2024 – Source: securelist.com

Source: securelist.com - Author: Kaspersky GERT, Kaspersky Security Services SOC, TI and IR posts SOC, TI...

securelist.com

DCRat backdoor returns – Source: securelist.com

Source: securelist.com - Author: AMR Since the beginning of the year, we’ve been tracking in our...

securelist.com

SideWinder targets the maritime and nuclear sectors with an updated toolset – Source: securelist.com

Source: securelist.com - Author: Giampaolo Dedola, Vasily Berdnikov Last year, we published an article about SideWinder,...

securelist.com

Trojans disguised as AI: Cybercriminals exploit DeepSeek’s popularity – Source: securelist.com

Source: securelist.com - Author: Vladislav Tushkanov, Vasily Kolesnikov, Oleg Kupreev, Denis Sitchikhin, Alexander Kryazhev Introduction Among...

securelist.com

Undercover miner: how YouTubers get pressed into distributing SilentCryptoMiner as a restriction bypass tool – Source: securelist.com

Source: securelist.com - Author: Leonid Bezvershenko, dmitrypikush, Oleg Kupreev In recent months, we’ve seen an increase...

securelist.com

Mobile malware evolution in 2024 – Source: securelist.com

Source: securelist.com - Author: Anton Kivva These statistics are based on detection alerts from Kaspersky products,...

securelist.com

The SOC files: Chasing the web shell – Source: securelist.com

Source: securelist.com - Author: Domenico Caldarella Web shells have evolved far beyond their original purpose of...

securelist.com

Exploits and vulnerabilities in Q4 2024 – Source: securelist.com

Source: securelist.com - Author: Alexander Kolesnikov Q4 2024 saw fewer published exploits for Windows and Linux...

securelist.com

The GitVenom campaign: cryptocurrency theft using GitHub – Source: securelist.com

Source: securelist.com - Author: Georgy Kucherin, Joao Godinho In our modern world, it’s difficult to underestimate...

securelist.com

Angry Likho: Old beasts in a new forest – Source: securelist.com

Source: securelist.com - Author: Kaspersky Angry Likho (referred to as Sticky Werewolf by some vendors) is...

securelist.com

Managed detection and response in 2024 – Source: securelist.com

Source: securelist.com - Author: Kaspersky Security Services SOC, TI and IR posts SOC, TI and IR...

securelist.com

Spam and phishing in 2024 – Source: securelist.com

Source: securelist.com - Author: Tatyana Kulikova, Olga Svistunova, Roman Dedenok, Andrey Kovtun, Irina Shimko, Anna Lazaricheva...

securelist.com

StaryDobry ruins New Year’s Eve, delivering miner instead of presents – Source: securelist.com

Source: securelist.com - Author: Tatyana Shishkova, Kirill Korchemny Introduction On December 31, cybercriminals launched a mass...

securelist.com

Investors, Trump and the Illuminati: What the “Nigerian prince” scams became in 2024 – Source: securelist.com

Source: securelist.com - Author: Anna Lazaricheva Spam and phishing Spam and phishing 05 Feb 2025 minute...

securelist.com

Take my money: OCR crypto stealers in Google Play and App Store – Source: securelist.com

Source: securelist.com - Author: Dmitry Kalinin, Sergey Puzan In March 2023, researchers at ESET discovered malware...

The Register Security

UN says Asian scam call center epidemic expanding globally amid political heat – Source: go.theregister.com

23/04/2025

securityweek.com

Terra Security Raises $8M for Agentic AI Penetration Testing Platform – Source: www.securityweek.com

23/04/2025

securityweek.com

Cyberattack Knocks Texas City’s Systems Offline – Source: www.securityweek.com

23/04/2025

securityweek.com

Many Malware Campaigns Linked to Proton66 Network – Source: www.securityweek.com

23/04/2025

securityweek.com

Legacy Google Service Abused in Phishing Attacks – Source: www.securityweek.com

23/04/2025

The Hacker News

Google Drops Cookie Prompt in Chrome, Adds IP Protection to Incognito – Source:thehackernews.com

23/04/2025

securelist.com

Latest News

CISO2CISO © 2025 - All righths reserved.