Malware & Threats Archives - Cyber Security Minute

China’s APT41 Targets Taiwan Research Institute for Cyber Espionage

Issued by: Dark Reading

China-linked advanced persistent threat group APT41 appears to have compromised a government-affiliated institute in Taiwan that conducts research on advanced computing and associated technologies. The intrusion began in July 2023, with the threat actor gaining initial access to the victim environment via undetermined means. Since then, it has deployed multiple malware tools, including the well-known…

A ransomware attack disrupted operations at OneBlood blood bank

Issued by: Security Affairs

OneBlood is a non-profit organization that provides blood and blood products to over 300 hospitals and medical facilities across the U.S. Southeast. The organization collects, tests, and distributes blood to ensure a steady supply for needy patients. A disruptive ransomware attack hit OneBlood and disrupted its medical operations. OneBlood is still operational and continues its…

Malware & Threats, Mobile Security

Mandrake Android spyware found in five apps in Google Play with over 32,000 downloads since 2022

Issued by: Security Affairs

Researchers from Kaspersky discovered a new version of the Mandrake Android spyware in five app on Google Play, totaling over 32,000 downloads between 2022 and 2024. Researchers from Bitdefender discovered the high-sophisticated Android spyware Mandrake in 2022, while investigating highly targeted attacks against specific devices. The original Mandrake campaign had two major infection waves, in…

Malware & Threats

Ransomware Gangs Exploit ESXi Bug for Instant, Mass Encryption of VMs

Issued by: Dark Reading

Multiple ransomware groups have been weaponizing an authentication bypass bug in VMware ESXi hypervisors to quickly deploy malware across virtualized environments. VMware assigned the bug (CVE-2024-37085) a “medium” 6.8 out of 10 score on the CVSS scale. The average score is largely due to the fact that it requires an attacker to have existing permissions…

Malware & Threats

UK Blood Stocks Drop After Ransomware Hack

Issued by: DataBreach Today

The U.K. National Health Service is urging hospitals across the country to limit the use of rare O-negative type blood after a ransomware attack on a British laboratory service provider crippled blood donations across the country. The NHS Blood and Transplant service on Thursday issued an amber alert to hospitals stating that the combination of…

Hamster Kombat Players Threatened by Spyware & Infostealers

Issued by: Dark Reading

Malicious actors are targeting users of a mobile currency game by using fake Android and Windows software that installs spyware and other malware. Hamster Kombat launched in March and already has more than 250 million users, likely due to the promises of winning TON-based cryptocurrency. The game is for Android users, who can earn in-game…

Malware & Threats

Is GhostEmperor Back? Sygnia Finds Clues in Recent Cyber Incident

Issued by: SecurityWeek

GhostEmperor is a threat group first discovered and described by Kaspersky in 2021. It has not been recognized since. In a late 2023 compromise investigation, Sygnia discovered what it believes to be a variant of the GhostEmperor infection chain leading to the Demodex rootkit – which was first seen and described by Kaspersky in 2021….

Malware & Threats

Breach Roundup: North Korean Hackers Target macOS Users

Issued by: DataBreach Today

North Korean Hackers Target macOS Users North Korean state-sponsored hackers are targeting macOS users with a new variant of their BeaverTail malware, spreading it through a malicious version of the video-calling service Microtalk. Cybersecurity researcher Patrick Wardle revealed that the attackers trick victims into downloading the infected software by posing as recruiters offering job interviews….