golang
-
Weaponizing FortiOS: How Hackers Weaponized Diagnostic Commands to Steal Credentials
A sophisticated, large-scale credential harvesting operation, dubbed “FortiBleed”, has surfaced, demonstrating a highly efficient method for compromising Fortinet FortiGate firewalls.…
Read More » -
Analyzing GoFlateLoader: The High-Volume Payload Delivery Mechanism for Modern Infostealers
In the evolving landscape of malware distribution, GoFlateLoader has emerged as a prominent Golang-based delivery vehicle. While its architecture may…
Read More » -
Technical Analysis: BLUERABBIT – A Modular Golang Backdoor with Destructive Payload Capabilities
Security researchers have identified a sophisticated new Golang-based backdoor, dubbed BLUERABBIT, designed to execute a multi-stage attack lifecycle on Windows…
Read More » -
The Multi-Stage Supply Chain Compromise of Checkmarx KICS
In a sophisticated demonstration of supply chain exploitation, the official Checkmarx KICS (Keeping Infrastructure as Code Secure) ecosystem has fallen…
Read More » -
GhostSocks Hijacks Devices as Proxy Network for Stealthy Cyberattacks
A recently identified malware strain known as GhostSocks is fundamentally altering attack tactics by transforming compromised devices into residential proxy…
Read More » -
Docker Zombie Malware Infects Containers for Crypto Mining and Self-Replication
A novel malware campaign targeting containerized infrastructures has emerged, exploiting insecurely exposed Docker APIs to spread malicious containers and mine…
Read More » -
Threat Actors Target Critical National Infrastructure with New Malware and Tools
A recent investigation by the FortiGuard Incident Response (FGIR) team has uncovered a sophisticated, long-term cyber intrusion targeting critical national…
Read More » -
Researchers Uncover SuperShell Payloads and Various Tools in Hacker’s Open Directories
Cybersecurity researchers at Hunt have uncovered a server hosting advanced malicious tools, including SuperShell command-and-control (C2) payloads and a Linux…
Read More » -
Operation HollowQuill – Weaponized PDFs Deliver a Cobalt Strike Malware Into Gov & Military Networks
In a recent revelation by SEQRITE Labs, a highly sophisticated cyber-espionage campaign, dubbed Operation HollowQuill, has been uncovered. The operation…
Read More » -
Ghidra 11.3 Released – A Major Update to NSA’s Open-Source Tool
The National Security Agency (NSA) has officially released Ghidra 11.3, the latest iteration of its open-source software reverse engineering (SRE)…
Read More » -
Multi-Plugin Malware Framework Installs Backdoor on Windows
The QSC Loader service DLL named “loader.dll” leverages two distinct methods to obtain the path to the Core module code.…
Read More »