Two versions of the 3CX Windows electron app were compromised in a targeted supply chain attack, and researchers have connected it to a North Korean attack group.
Two threat groups have been identified deploying a new variant of the IcedID malware, which often is seen in conjunction with Emotet.
By looking at metadata in LNK files in recent campaigns, Talos researchers have linked the Bumblebee malware with the Qakbot and IcedID malware groups.
A newly discovered cyber espionage campaign from a Chinese threat actor is targeting Asian and US organizations with self-replicating malware called MISTCLOAK.
New variants of the RAT reveal added functionalities and deployment alongside other malware families.