A new crypter and loader named ASMCrypt, which is an “evolved version” of the DoubleFinger malware, is being sold on the dark web. Leveraging TOR networks, it enables users to build and covertly deliver payloads obscured in encrypted .PNG files. This technology can be used by cybercriminals to gain network access for ransomware attacks and data theft. Increasingly, threat actors are collaborating, evidenced by partnerships between groups like GuLoader and Remcos RAT. An information-stealing malware, Lumma Stealer, has also been observed in recent activity.

HSCC CWG urges halting NPRM, calls for joint cybersecurity policy reform to boost healthcare resilience
The Cybersecurity Working Group (CWG) within the U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) has called on the country’s federal administration to work