Finding Minhook in a sideloading attack – and Sweden too
Multifaceted changes in TTPs illustrate what researchers see when they start digging
Similar Posts
SystemBC Powers REM Proxy With 1,500 Daily VPS Victims Across 80 C2 Servers
Bys sA proxy network known as REM Proxy is powered by malware known as SystemBC, offering about 80% of the botnet to its users, according to new findings from the Black Lotus Labs team at Lumen Technologies. “REM Proxy is a sizeable network, which also markets a pool of 20,000 Mikrotik routers and a variety of…
LOSFA sends out letter to students warning of ‘data security incident’ involving information
Bys sWBRZ reports: The Louisiana Office of Student Financial Assistance sent out a letter to students warning them of a “data security incident” involving their information. The letter, dated Dec. 5, said the office is investigating an incident that “involved authorized access to certain LOSFA systems” and that an unauthorized party accessed or removed certain files……
Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
Bys sAmazon’s threat intelligence team on Wednesday disclosed that it observed an advanced threat actor exploiting two then-zero-day security flaws in Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC products as part of attacks designed to deliver custom malware. “This discovery highlights the trend of threat actors focusing on critical identity and network access control…
[Webinar] From Code to Cloud to SOC: Learn a Smarter Way to Defend Modern Applications
Bys sModern apps move fast—faster than most security teams can keep up. As businesses rush to build in the cloud, security often lags behind. Teams scan code in isolation, react late to cloud threats, and monitor SOC alerts only after damage is done. Attackers don’t wait. They exploit vulnerabilities within hours. Yet most organizations take days…
You’re not paranoid: lawyers ARE coming to get you.
Bys sHere’s your reminder that if federal regulators like HHS OCR don’t investigate and penalize you after a data breach involving patient data, state attorneys general may, and class-action lawyers may also come after you in federal or state courts. In some cases, like this one, federal, state, and class-action lawyers may all come after you……
FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing
Bys sThe U.S. Federal Bureau of Investigation (FBI) on Thursday released an advisory warning of North Korean state-sponsored threat actors leveraging malicious QR codes in spear-phishing campaigns targeting entities in the country. “As of 2025, Kimsuky actors have targeted think tanks, academic institutions, and both U.S. and foreign government entities with embedded malicious Quick Response (QR)