theregister

Ransomware crims that exploited SharePoint 0-days add Velociraptor to their arsenal

The ransomware gang caught exploiting Microsoft SharePoint zero-days over the summer has added a new tool to its arsenal: Velociraptor, an open-source digital forensics and incident response app not ...
CSO Online

Open-source DFIR Velociraptor was abused in expanding ransomware efforts

China-based threat actors abused outdated Velociraptor to maintain persistence and help deploy Warlock, LockBit, and Babuk ransomware.
thearabianpost

SnakeKeylogger Surfaces with New Email-to-PowerShell Attack Chain

A fresh campaign deploying SnakeKeylogger is targeting users with weaponized emails that lead to the execution of PowerShell scripts and ultimately exfiltrate sensitive data. Security analysts warn ...
Developer Tech

Stealit malware exploits new Node.js feature in attacks

Cybersecurity researchers have discovered a new ‘Stealit’ info-stealing malware campaign that exploits an experimental Node.js feature.