SMTP Archives - Page 2 of 9 - Cybersecurity News Everyday

New Snake Keylogger Variant Leverages AutoIt Scripting to Evade Detection

Summary: A new variant of the Snake Keylogger malware is actively targeting Windows users in several countries and has been associated with over 280 million blocked infection attempts this year. This malware employs advanced techniques like AutoIt scripting to bypass detection, captures sensitive information, and maintains persistence on infected systems.…

Threat Research

FortiSandbox 5.0 Detects Evolving Snake Keylogger Variant

February 18, 2025 Fortinet

A new variant of the Snake Keylogger has been detected by FortiGuard Labs, utilizing malicious techniques to capture keystrokes and steal sensitive information from Windows users. The malware has been responsible for over 280 million blocked infection attempts, predominantly affecting users in China, Turkey, Indonesia, Taiwan, and Spain.…

Cyber Security News

Attackers Use NOVA Stealer to Target Russian Organizations

February 7, 2025 Cyware

Summary: The NOVA campaign involves distributing a sophisticated stealer malware via phishing emails disguised as legitimate contracts. Once executed, NOVA employs various persistence mechanisms, captures sensitive data, and can disable security features on the infected system. It is marketed as Malware-as-a-Service (MaaS), making it accessible to a wide range of cybercriminals.…

0Trash

US-CERT Vulnerability Summary for the Week of January 27, 2025 – RedPacket Security

February 4, 2025February 4, 2025 iocOne

The CISA Vulnerability Bulletin highlights a range of new vulnerabilities reported in various software and systems, emphasizing their classification based on severity levels. It includes notable CVEs affecting several platforms, detailing the potential impacts and exploit details for critical, high, and medium vulnerabilities. Affected vulnerabilities can lead to SQL injection, unauthorized data access, buffer overflows, and other severe consequences.…

Interesting Stuff

Offensive Linux Security Tools : Password and Brute Force Attacks

February 3, 2025 admin

What is a Password and Brute Force Attack?

A password attack is an attempt to gain unauthorized access to a system by cracking or guessing a user’s credentials. One of the most common methods used in password attacks is brute force, where an attacker systematically tries different password combinations until they find the correct one.…

Cyber Security News

US, Dutch Authorities Disrupt Pakistani Hacking Shop Network

January 31, 2025 CybersecurityNews

Summary: US and Dutch authorities disrupted a Pakistan-based network harnessing illicit online marketplaces for distributing hacking and fraud-enabling tools. This law enforcement operation, dubbed Operation Heart Blocker, resulted in the seizure of 39 domains operated by Saim Raza, responsible for over million in fraud-related losses in the US.…

0Trash

Network Fundamentals

January 31, 2025 iocOne

This article discusses the significance of networks and network security in cybersecurity, describing how networks facilitate communication between devices and the essential functions they provide, such as file and hardware sharing, centralized management, and the importance of security measures to safeguard against cyber threats. Affected: networks, cybersecurity sector

Keypoints :

Networks enable devices to communicate based on established rules.…

Threat Research

Analysis of VAT Final Tax Return Payment Notification Phishing Email Suspected to be from Kimsuky (January 20, 2025)

January 30, 2025January 30, 2025 iocOne

This article analyzes a phishing email believed to be created by the Kimsuky group, which disguises itself as a notification for a value-added tax payment from the National Tax Service. The email appears legitimate but is linked to a Russian email address, exposing users to potential fraud.…

Threat Research

Phishing Email Redirecting to Fake YouTube Targeting Medical Institutions – 11.eml

January 28, 2025January 28, 2025 iocOne

This article examines a phishing email designed to redirect victims to a fake YouTube page. It outlines the email’s content, analysis of sender details, and various security checks, highlighting the risks associated with such phishing attempts. Affected: YouTube, email users, individuals and entities potentially targeted by phishing scams.…

Cyber Security News

Omdia Finds Phishing Attacks Top Smartphone Security Concern for Consumers

January 24, 2025January 25, 2025 CybersecurityNews

Summary: A recent survey by Omdia reveals that phishing scams are the primary security threat for smartphone users, with 24% of respondents reporting they have fallen victim to such attacks. The survey highlights the inadequacies of current smartphone protections against phishing, despite advancements in device security.…

Threat Research

Hidden Threats of Game Assistants | Analysis Report on the “Catlavan” Backdoor Spread in Gaming Forums

January 22, 2025January 22, 2025 iocOne

As the user base for online gaming grows, so does the gray market for cheats and auxiliary software, which has also led to the spread of malware. A breakthrough in malicious file detection technology by BinaryAI identifies a recent attack targeting users in Russian-based gaming environments, linked to a backdoor named “Catlavan.”…

Threat Research

Targeted supply chain attack against Chrome browser extensions

January 22, 2025January 22, 2025 iocOne

This article discusses a supply chain attack on Chrome browser extensions that began in December 2024, where attackers exploited a phishing vulnerability to inject malicious code. This breach compromised a number of extensions, risking sensitive user data including authentication tokens. Investigations revealed the attackers’ sophisticated methods and infrastructure, highlighting the ongoing threats posed by such supply chain vulnerabilities.…

Cyber Security News

Phishing Attacks Are the Most Common Smartphone Security Issue for Consumers

January 21, 2025January 25, 2025 CybersecurityNews

Summary: A recent consumer survey highlights that phishing attacks are the most prevalent security concern among smartphone users, followed by malware and physical theft. Testing reveals that while Samsung S24 excels in anti-phishing protection, other premium devices, including the iPhone 16 Pro, lack adequate security features.…

Threat Research

Nmap for Beginners

January 18, 2025January 18, 2025 iocOne

Nmap is a powerful network scanning tool used for discovering hosts and services on a network. This overview provides tips on maximizing its potential, including the use of various flags for enhanced scanning, such as aggressive scans and vulnerability detection. Affected: network security, penetration testing, bug bounty programs

Keypoints :

Nmap is used for network probing, service discovery, and operating system identification.…

Cyber Security News

MikroTik botnet uses misconfigured SPF DNS records to spread malware

January 16, 2025 BleepingComputer

Summary: A newly discovered botnet comprising 13,000 compromised MikroTik devices exploits misconfigured DNS records to bypass email protections and deliver malware. The botnet utilizes an overly permissive SPF record, allowing the spoofing of around 20,000 web domains, and has been linked to a malspam campaign impersonating DHL Express.…

Threat Research

Origins of A Logger – Agent Tesla

January 15, 2025January 15, 2025 iocOne

The article discusses the evolution and impact of the Agent Tesla malware and its variant, Origin Logger, which have been pivotal in the Malware-as-a-Service (MaaS) ecosystem since 2014. The report details the methods of the developers, their targeted sectors, and the ongoing business email compromise (BEC) attacks.…

Interesting Stuff

Free Malware Analysis Project – Learn Malware Analysis skills

January 14, 2025January 16, 2025 admin

𝐏𝐫𝐞-𝐫𝐞𝐪𝐮𝐢𝐬𝐢𝐭𝐞𝐬 Introduction to Malware Analysis https://github.com/0xrajneesh/Malware-Analysis-Projects-for-Beginners/blob/main/Introduction-to-Malware-Analysis.md Malware Analyst Guide 2024 https://youtu.be/tUsx0I0TK54 𝐌𝐚𝐥𝐰𝐚𝐫𝐞 𝐀𝐧𝐚𝐥𝐲𝐬𝐢𝐬 𝐏𝐫𝐨𝐣𝐞𝐜𝐭𝐬 Static Analysis of a Simple Malware Sample https://github.com/0xrajneesh/Malware-Analysis-Projects-for-Beginners/blob/main/Project Static Analysis of a Simple Malware Sample.md Analyzing FTP Log Files Using Splunk SIEM https://github.com/0xrajneesh/Splunk-Projects-For-Beginners/blob/main/project%232-analyzing-ftp-logs-using-splunk-siem.md Analyzing HTTP Log Files Using Splunk SIEM https://github.com/0xrajneesh/Splunk-Projects-For-Beginners/blob/main/project%233-analyzing-http-logs-using-splunk-siem.md…

Threat Research

Hack The Box Escape

January 13, 2025January 13, 2025 iocOne

This article provides a detailed walkthrough of the “Escape” machine on Hack The Box, focusing on Active Directory enumeration techniques and exploitation methods. The author shares insights gained from the experience, including working with Kerberos, NTLM, and Certificate Authority. Affected: Hack The Box

Keypoints :

The box “Escape” is rated Medium and is the author’s first Active Directory machine.…

Cyber Security News

Cybersecurity News Review Week 2

January 11, 2025January 25, 2025 admin

This article discusses recent significant developments in cybersecurity, including vulnerabilities in Ivanti products, phishing scams, data exposure issues, and new government initiatives aimed at improving cyber resilience. Affected: Ivanti Connect Secure, CrowdStrike, Motorola ALPR, Gmail, WordPress, CISA, UK Government

Keypoints :

Ivanti disclosed two high-severity vulnerabilities (CVE-2025–0282, CVE-2025–0283) affecting its products.…

Tag: SMTP