Avast Releases Rhysida Ransomware Decryptor In October 2023, we published a blog post containing technical analysis of the Rhysida ransomware. What we intentionally omitted in the blog post was that we had been aware of a cryptographic vulnerability in this ransomware for several months and, since August 2023, we had covertly provided victims with our decryption tool. […]
Zero-Day Exploit Powers Advanced Rootkit Key Points Avast discovered an in-the-wild admin-to-kernel exploit for a previously unknown zero-day vulnerability in the appid.sys AppLocker driver. Thanks to Avast’s prompt report, Microsoft addressed this vulnerability as CVE-2024-21338 in the February Patch Tuesday update. The exploitation activity was orchestrated by the notorious Lazarus Group, with the end goal of establishing […]
Malware Campaign Exploiting Antivirus Updates Key Points Avast discovered and analyzed a malware campaign hijacking an eScan antivirus update mechanism to distribute backdoors and coinminers Avast disclosed the vulnerability to both eScan antivirus and India CERT. On 2023-07-31, eScan confirmed that the issue was fixed and successfully resolved The campaign was orchestrated by a threat […]
Rising threats during the world’s biggest sporting event call for increased awareness As the world’s most elite athletes gather for this summer’s competitions, cybercriminals are seizing the opportunity to exploit the elevated attention. These events showcase athletic excellence, attracting fans worldwide, but on the downside – they also attract malicious actors. Alongside some of the […]
Gen identifies and helps fix a vulnerability exploited by a notorious hacker group, reinforcing global cybersecurity Gen Threat Labs recently uncovered and reported a major security flaw known as a zero-day vulnerability (CVE-2024-38193), which Microsoft has now fixed. This repair is important because it addresses a security issue that was being used by the Lazarus APT group, a […]
How deepfakes and AI-created content shape perceptions in today’s digital world As the digital landscape rapidly evolves, so do the risks associated with it. Among the growing concerns are AI-generated content and deepfakes, which are progressively being used to deceive and manipulate. While AI-generated images and deepfakes are drawing attention in the political landscape, their […]
In early June, we discovered a sample that was exploiting a new zero-day vulnerability within Winsock driver (CVE-2024-38193) to achieve local privilege escalation to deploy a new version of FudModule rootkit. We determined that the sample was part of a Lazarus Group operation that was targeting potentially sensitive industries such as aerospace and cryptocurrency engineering […]
How Fake Captcha Campaigns are Distributing Lumma Stealer Over the past four weeks, we’ve protected more than 1.4 million customers against attempts to distribute malware through various fake Captcha campaigns, highlighting the sheer scale and persistence of these attacks. The primary malware being distributed, Lumma Stealer, poses a significant threat to users as it is […]
A shocking encounter with a fake Elon Musk and tips to avoid social media scams On Instagram or TikTok, it’s common to receive follow requests from random people — even if your account is private. You might see requests from a few friends, someone you met years ago at a party or the occasional bot […]
Scammers Now Using Phone Calls to Initiate Fraudulent Schemes The promise of easy money can often be too tempting to ignore, especially when it arrives via popular messaging platforms like WhatsApp and Telegram. Yet, lurking behind these seemingly benign job offers is a new, insidious form of scam that leverages social engineering to exploit the […]
USA
2255 Cumberland Pkwy Bldg 1600, STE 115-A, Atlanta, Georgia 30339
☎️ (678)-886-8405
Jamaica
District 360
19 Cargill Avenue, Kingston 10
☎️ 876-618-7604
