Mistic Backdoor Enables Long-Term Access in Ransomware Attacks
Cyber attackers have deployed a sneaky backdoor called Mistic, allowing them to maintain long-term access to infected systems during ransomware attacks, all while staying remarkably under the radar. This stealthy threat uses clever tactics like running payloads in memory and mimicking legitimate Microsoft security tools to evade detection.
#Ransomware #Backdoor #MalwareOperations #MfaBypass #EmergingThreats
Operation FlutterBridge: The FlutterShell macOS Backdoor
Pulse ID: 6a3a8f992914be78dcdd6641
Pulse Link: https://otx.alienvault.com/pulse/6a3a8f992914be78dcdd6641
Pulse Author: CyberHunter_NL
Created: 2026-06-23 13:52:25
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#BackDoor #CyberSecurity #InfoSec #Mac #MacOS #OTX #OpenThreatExchange #RAT #bot #CyberHunter_NL
WordPress Plugins Backdoored in ShapedPlugin Supply Chain Attack
A recent supply chain attack on ShapedPlugin compromised the updates for several WordPress plugins, including Product Slider Pro for WooCommerce, injecting backdoor code that could give attackers full control of affected sites. This severe vulnerability, rated 10.0 on the CVSS scale, highlights the importance of staying vigilant about plugin…
#SupplyChain #Wordpress #Shapedplugin #Cve202649777 #Backdoor
@lumi any "remote attestation" is Malware and should be outlawed as such!
Seriously, we need to stop this bullshit RIGHT NOW before it gets nornalized!
#Attstation #RemoteAttestation #Malware #ClientSideAnticheat #FalsePretenses #Govware #Backdoor #Anticheat #Apps #Banking #Gaming #Games
Operation FlutterBridge: The FlutterShell macOS Backdoor
Pulse ID: 6a362a848b51b0f957364629
Pulse Link: https://otx.alienvault.com/pulse/6a362a848b51b0f957364629
Pulse Author: Tr1sa111
Created: 2026-06-20 05:52:04
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#BackDoor #CyberSecurity #InfoSec #Mac #MacOS #OTX #OpenThreatExchange #RAT #bot #Tr1sa111
A Fileless Python Backdoor Deployed by North Korean APT37
APT37 uses NarwhalRAT malware in targeted campaigns to gain remote access, steal data, and control compromised systems.
Pulse ID: 6a35d8989c9c8e67d57e2a12
Pulse Link: https://otx.alienvault.com/pulse/6a35d8989c9c8e67d57e2a12
Pulse Author: cryptocti
Created: 2026-06-20 00:02:32
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#APT37 #BackDoor #CyberSecurity #InfoSec #Korea #Malware #NorthKorea #OTX #OpenThreatExchange #Python #RAT #bot #cryptocti
A Fileless Python Backdoor Deployed by North Korean APT37
APT37 uses NarwhalRAT malware in targeted campaigns to gain remote access, steal data, and control compromised systems.
Pulse ID: 6a35d8fdc19d40c2339797fc
Pulse Link: https://otx.alienvault.com/pulse/6a35d8fdc19d40c2339797fc
Pulse Author: cryptocti
Created: 2026-06-20 00:04:13
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#APT37 #BackDoor #CyberSecurity #InfoSec #Korea #Malware #NorthKorea #OTX #OpenThreatExchange #Python #RAT #bot #cryptocti
#Microsoft discovers new lightweight #backdoor that steals #cryptocurrency
#security
LLMjacking si evolve: server Ollama esposti diventano il cervello di uno strumento di hacking autonomo, catturato in sviluppo da Sysdig
Il Sysdig Threat Research Team ha catturato un threat actor che utilizzava un server Ollama esposto su internet come motore di ragionamento per VAPT, un framework offensivo automatizzato a più stadi. La campagna documenta la convergenza tra LLMjacking e offensive AI tooling: il modello AI decide ogni passo dell'attacco, dall'identificazione del servizio all'escalation dei privilegi.
Analyst207
OTX Bot
Netzblockierer
MindTGap
PrivacyDigest
(in)sicurezza digitale