Iranian Government-Sponsored APT Group Target Government and Commercial Networks
Iranian Government-Sponsored APT Group Target Government and Commercial Networks
  • Alert & Advisory
  • March 1, 2022

MuddyWater, an Iranian government-sponsored advanced persistent threat (APT) actor, has been observed conducting active cyber espionage and other malicious cyber operations against a variety of government and private-sector organizations in Africa and other continents, including telecommunications, defense, oil and natural gas, and relevant government agencies. This threat group is also known as Earth Vetala, MERCURY, Static Kitten, Seedworm, and TEMP. Zagros. The APT group was seen employing spearphishing, exploiting publicly known vulnerabilities, and leveraging multiple open-source tools to gain access to sensitive government and commercial networks.

New Zero-Day Chrome Web Browser Vulnerability
New Zero-Day Chrome Web Browser Vulnerability
  • Alert & Advisory
  • February 15, 2022

The Chrome web browser has eight security flaws that have been discovered and reported, including a high-severity flaw that is actively being exploited in real-world attacks. Google, on the other hand, has released fixes for the Chrome web browser's security flaws, marking the internet giant's first zero-day patch in 2022.

New Variant of BRATA Banking Trojan Infecting Android Devices
New Variant of BRATA Banking Trojan Infecting Android Devices
  • Alert & Advisory
  • January 28, 2022

New variants of the BRATA banking trojan have been discovered to be targeting global Android devices since November 2021 with advanced features, including the ability to wipe devices after stealing user data, tracking devices via GPS, and novel obfuscation techniques. The remote access trojan (RAT), which targets banks and financial institutions, is now being distributed through a downloader to avoid being detected by antivirus (AV) solutions.

Wordpress Themes and Plugins Vulnerabilities
Wordpress Themes and Plugins Vulnerabilities
  • Alert & Advisory
  • January 25, 2022

A recent discovery revealed that dozens of WordPress themes and plugins had been backdoored with malicious code in order to infect additional sites. Also disclosed was a security flaw affecting three different WordPress plugins that affected over 84,000 websites and could be exploited by a malicious actor to take over vulnerable sites.

SMS-Based Malware Infecting Mobile Devices
SMS-Based Malware Infecting Mobile Devices
  • Alert & Advisory
  • January 20, 2022

Recently a notorious FlutBot SMS Android malware that targets mobile devices was reported, but now there is another Android malware called TangleBot that employs more or less similar tactics to gain control of the device. This malware is reported to be far more invasive than the FlutBot malware.

Related Articles