Trend Micro has spotted cybercriminals using malware disguised as a proof-of-concept (PoC) solution for a major Windows vulnerability to steal vital system information. This ploy targets cybersecurity researchers who, thinking they are analysing a PoC, end up installing malware. The malware steals PC information, process and directory lists, network IPs and adapter info, and installed updates. These types of attacks are typically conducted by nation-states targeting large tech organizations.
GuidePoint warns of Python backdoor used in ransomware
GuidePoint Security identified a threat actor using a Python-based backdoor to persistently access breached endpoints and release RansomHub encryptors across compromised networks. The backdoor was