ITSEC NewsJan 26, 2023
Quarterly Report: Incident Response Trends in Q4 2022 - Syncro, a remote management and monitoring tool, emerges as an increasingly common tool f... https://blog.talosintelligence.com/quarterly-report-incident-response-trends-in-q4-2022/ #remoteaccesstool #cobaltstrike #ctirtrends #powershell #ransomware #microsoft #phishing #qakbot
Quarterly Report: Incident Response Trends in Q4 2022

Syncro, a remote management and monitoring tool, emerges as an increasingly common tool for adversaries. By Caitlin Huey. Ransomware continued to be a top threat Cisco Talos Incident Response (Talos IR) responded to this quarter, with appearances from both previously seen and newly observed ransomware families. However, IR also observed

Cisco Talos Blog
ITSEC NewsMay 22, 2020
‘Coronavirus Report’ Emails Spread NetSupport RAT, Microsoft Warns - Attackers used malicious Excel 4.0 documents to spread the weaponized NetSupport RAT in a spear-ph... more: https://threatpost.com/coronavirus-emails-netsupport-rat-microsoft/156026/ #microsoftsecurityintelligence #remoteaccesstool #netsupportrat #spearphishing #websecurity #coronavirus #microsoft #covid-19 #excel4.0
‘Coronavirus Report’ Emails Spread NetSupport RAT, Microsoft Warns

Attackers used malicious Excel 4.0 documents to spread the weaponized NetSupport RAT in a spear-phishing campaign.

Threatpost - English - Global - threatpost.com
Samuel Vermeulen Mar 30, 2020
#ActuLibre COVID-19: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware -> http://feedproxy.google.com/~r/TheHackersNews/~3/ALfrjONDEQE/zoom-video-coronavirus.html #VideoConferencingSoftware #remoteaccesstool #phishingattack #cybersecurity #domainhosting #Coronavirus #domainname #COVID-19 #Malware #Zoom
COVID-19: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware

Covid-19 Impact: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware During Coronavirus Outbreak With Fake Domains and Websites.

The Hacker NewsMar 30, 2020
COVID-19: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware https://thehackernews.com/2020/03/zoom-video-coronavirus.html #VideoConferencingSoftware #remoteaccesstool #phishingattack #cybersecurity #domainhosting #Coronavirus #domainname #COVID-19 #Malware #Zoom
COVID-19: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware

Covid-19 Impact: Hackers Begin Exploiting Zoom's Overnight Success to Spread Malware During Coronavirus Outbreak With Fake Domains and Websites.

ITSEC NewsMar 2, 2020
NetSupport Manager RAT Spread via Bogus NortonLifeLock Docs - The legitimate remote-access tool is being used to maliciously infect victims and allow remote cod... more: https://threatpost.com/netsupport-manager-rat-nortonlifelock-docs/153387/ #maliciousworddocument #remotecodeexecution #netsupportmanager #paloaltonetworks #phishingcampaign #remoteaccesstool #nortonlifelock #websecurity #malware #macros #rat
NetSupport Manager RAT Spread via Bogus NortonLifeLock Docs

The legitimate remote-access tool is being used to maliciously infect victims and allow remote code-execution.

Threatpost - English - Global - threatpost.com
ITSEC NewsFeb 20, 2020
ObliqueRAT: New RAT hits victims' endpoints via malicious documents - By Asheer Malhotra.Cisco Talos has observed a malware campaign that utilizes malicious Microsoft Off... more: http://feedproxy.google.com/~r/feedburner/Talos/~3/t5tgY1eAALc/obliquerat-hits-victims-via-maldocs.html #remoteaccesstool #threatresearch #obliquerat #malware #talos #rat
ObliqueRAT: New RAT hits victims' endpoints via malicious documents

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group

ITSEC NewsJan 8, 2020
Liverpool Voyeur Used IM-RAT to Video Women at Home - The case highlights the rising issue of stalkerware, which has reached epidemic proportions. more: https://threatpost.com/liverpool-voyeur-im-rat-video-women/151638/ #remoteaccesstool #imminentmonitor #mobilesecurity #scottcrowley #websecurity #stalkerware #government #courtcase #liverpool #malware #spyware #im-rat #spying #voyeur #video
Liverpool Voyeur Uses IM-RAT to Videotape Women at Home

The case highlights the rising issue of stalkerware, which has reached epidemic proportions.

Threatpost - English - Global - threatpost.com
ITSEC NewsDec 2, 2019
Authorities Break Up Imminent Monitor Spyware Organization - The infrastructure behind a remote access tool (RAT) allowing full remote takeover of a victim mac... more: https://threatpost.com/authorities-imminent-monitor-spyware-organization/150731/ #remoteaccesstool #imminentmonitor #lawenforcement #remotetakeover #government #australia #shockwave #takedown #malware #arrests #spyware #unit42 #rat
Authorities Break Up Imminent Monitor Spyware Organization

The infrastructure behind a remote access tool (RAT) allowing full remote takeover of a victim machine has been dismantled.

Threatpost - English - Global - threatpost.com
Samuel Vermeulen Nov 29, 2019
#ActuLibre Europol Shuts Down 'Imminent Monitor' RAT Operations With 13 Arrests -> http://feedproxy.google.com/~r/TheHackersNews/~3/0SX47yoknMs/europol-imminent-monitor-rat.html #Remoteadministrationsoftware #ImminentMonitorRAT #RemoteAccessTrojan #remoteaccesstool #CyberCriminal #cybersecurity #hackingtool #CyberCrime #Europol
Europol Shuts Down 'Imminent Monitor' RAT Operations With 13 Arrests

Europol today announced to shut down the global organized cybercrime network behind Imminent Monitor RAT, yet another hacking tool that allows cybercriminals to gain complete control over a victim's computer remotely.