We discovered an active campaign ongoing since at least mid-2022 which uses Middle Eastern geopolitical-themed lures to distribute NjRAT (also known as Bladabindi) to infect victims across the Middle East and North Africa.
Related Post
- April 27, 2025
Storm-1977 Hits Education Clouds with AzureChecker, Deploys 200+
Microsoft has revealed that a threat actor it tracks as Storm-1977 has conducted password spraying attacks against cloud tenants in
- April 26, 2025
ToyMaker Uses LAGTOY to Sell Access to CACTUS
Cybersecurity researchers have detailed the activities of an initial access broker (IAB) dubbed ToyMaker that has been observed handing over
- April 25, 2025
Friday Squid Blogging: Squid Facts on Your Phone
Text “SQUID” to 1-833-SCI-TEXT for daily squid facts. The website has merch. As usual, you can also use this squid
- April 25, 2025
North Korean Hackers Spread Malware via Fake Crypto
North Korea-linked threat actors behind the Contagious Interview have set up front companies as a way to distribute malware during