Today > 1 Critical | 8 High | 35 Medium vulnerabilities - You can now download lists of IOCs here!
3 attack reports | 229 vulnerabilities
An open-source stealer tool called "SatanStealer" was shared on GitHub. Some features of SatanStealer developed with Python; - It can steal Discord Token, Discord injection, registered phone number, e-mail information, - Capture browser cookies and passwords - Capturing Crypto Wallets (Metamask, A…
Trend Micro recently discovered a threat actor group dubbed Void Arachne targeting Chinese-speaking users with malicious Windows Installer (MSI) files containing legitimate software bundled with malicious Winos payloads. The campaign promotes compromised MSI files embedded with nudifiers, deepfake …
This analysis details a malicious campaign dubbed 'FHAPPI' by the researcher, which utilized compromised Geocities Japan accounts to host malware payloads. The campaign leveraged VBScript and PowerShell scripts to execute encoded commands, ultimately delivering the Poison Ivy remote access trojan (…