The ransomware strain known as Play is now available to other threat actors as a service, according to cybersecurity company Adlumin. It states that the lack of variations between attacks indicates the ransomware is being sold with a step-by-step execution guide. Play, which uses flaws in Microsoft Exchange Server to infiltrate networks, was previously unique as its developers conducted the attacks, indicating a shift to RaaS (Ransomware as a Service) is a new development.
New Caminho Malware Loader Uses LSB Steganography and to Hide .NET Payloads Within Image Files
A sophisticated malware operation has emerged from Brazil, leveraging advanced steganographic techniques to conceal malicious payloads within seemingly harmless image files. The Caminho loader, active
