Malware

Threat actors have been targeting insecure Linux SSH servers with dictionary attack tools and port scanners in a bid to facilitate cryptocurrency mining and distributed denial-of-service attacks, The Hacker News reports.

New Nim-based malware, Editbot Stealer emerge Malicious Microsoft Word documents to facilitate the distribution of Nim-based malware, which has only recently gained traction with the emergence of the Nimbda and NimzaLoader malware loaders, according to The Hacker News.

The Iranian threat group is attacking the defense industry base with a previously unseen backdoor Microsoft has dubbed "FalseFont."

Organizations in the defense industrial base industry are having their employees targeted by Iranian nation-state threat operation APT33, also known as Peach Sandstorm, Refined Kitten, or HOLMIUM, in attacks involving the novel FalseFont malware, BleepingComputer reports.

Windows and macOS systems have been subjected to attacks leveraging the novel Go-based information-stealing malware JaskaGO, reports The Hacker News.

Seventy percent of gas stations across Iran had their services disrupted by a cyberattack.

Organizations in the hospitality industry have been targeted by a new phishing campaign distributing the QakBot, or QBot, malware months after the botnet was taken down in a law enforcement operation, according to BleepingComputer.

BleepingComputer reports that significant improvements have been made to the newest versions of the Rhadamanthys information-stealing malware, which initially targeted email, online banking, and FTP credentials upon its discovery in August 2022.