Malware

BleepingComputer reports that Israel has been targeted in attacks with an updated Rust-based version of the multi-platform SysJoker malware by the Gaza Cybergang, which is affiliated with Palestinian militant group Hamas.

North Korea's Lazarus Group, also known as Diamond Sleet, has been leveraging a trojanized CyberLink app installer to facilitate the distribution of LambLoad malware in a new supply chain attack, according to SiliconAngle.

Threat actors have been targeting macOS devices with the Atomic Stealer information-stealing malware, also known as AMOS, through fraudulent web browser updates as part of the new "ClearFake" campaign, The Hacker News reports.

Threat actors have been distributing a new Agent Tesla malware variant in attacks leveraging a lure file with the ZPAQ file compression format with improved compression ratios and journaling functionality over the RAR and ZIP formats, according to The Hacker News.

VX-Underground told SC Media the attempted frame-job would likely have little impact except to “make us look like jerks.”

Earlier this month it was Looney Tunables, now Kinsing launched attacks on Apache ActiveMQ to infect systems with malware and cryptominers.

Widely known malware-sharing community VX-Underground has been implicated by a new Phobos ransomware variant to be the developer of the updated strain, reports BleepingComputer.

QakBot trojan tactics live on in DarkGate, PikaBot malware attacks Attack techniques once used to disseminate the dismantled QakBot trojan, also known as QBot and Pinkslipbot, have been leveraged in a new widespread phishing campaign involving the DarkGate and PikaBot strains aimed at various industries, according to The Hacker News.