North Korean threat actor Lazarus Group has been observed by security researchers deploying a Windows rootkit. The rootkit has been deployed by exploiting a Dell firmware driver, the researchers say. ESET was the first to detect this addition to the group’s constantly evolving techniques. According to ESET the campaign was

A new hacking group that has been dubbed Witchetty has been observed by threat actors using a new steganographic technique to hide a backdoor within a fraudulent Windows logo. The group is reportedly targeting Middle Eastern governments. Broadcom released an advisory addressing the campaign in which it claimed that the

Microsoft has addressed a known issue that is currently affecting Wi-Fi hotspot features in its systems. The vulnerability has been added to its official Health Dashboard page as of this week after the company discovered that Windows 10 and 11 machines are subject to the bug. It is likely that

Security researchers at WIRED have urged users to update iOS, Chrome, Windows, and Zoom as soon as possible to stay up to date with relevant security issues. According to Wired, Google has had a busy month releasing patches for the Chrome browser and the Android operating system. In addition, Zoom

Cybersecurity researchers at Fortinet have released information regarding a phishing campaign targeting Microsoft Windows users. The phishing campaign leverages three different forms of malware, all of which are designed to steal sensitive information and credentials from victims. The malware types used in the campaign are AveMariaRAT, BitRAT, and PandoraHVNC, a

Kaspersky has made an unprecedented discovery that could have serious consequences for Windows operating systems and its users. Kaspersky released information about its findings on May 4, detailing how hackers were able to place shellcode into Windows event logs for the first time ever. This means that threat actors were

According to Microsoft’s security team, the operators of LemonDuck botnet are targeting systems in a mining campaign. Security researchers state that the malware exploits older vulnerabilities, most of which have already had patches released, to infiltrate cloud systems and servers. This includes EternalBlue, BlueKeep, and Microsoft Exchange ProxyLogon bugs. The

An old malware called Qbot is still targeting Windows PCs and other devices with new nefarious efficiency. Although the malware first emerged in 2007, it remains a threat to Windows users. In October, cybersecurity research company DFIR was able to obtain a sample of the malware and conduct analysis on

Earlier this week, Microsoft issued a fix for a vulnerability that allows remote, unprivileged attackers to abuse Remote Desktop Protocol (RDP) from inside Windows devices. The flaw could allow attackers to hijack smart cards and gain unauthorized access to file systems. The bug, which is tracked as CVE-2022-21893, could lead

Cybersecurity researchers have discovered a new malware that has the capability to create backdoors on Windows, Linux, and macOS operating systems. Therefore, hackers using the malware could achieve full access to compromised systems on a range of devices. Intezer released more information about the malware, which it has named SysJoker.