Iranian state-backed threat operation MuddyWater, also known as TA450, Mango Sandstorm, and Boggy Sandstorm, has leveraged the novel DarkBeatC2 command-and-control infrastructure tool as part of its latest attack campaign, The Hacker News reports.
LastPass has disclosed having been unsuccessfully targeted by a voice phishing attack that involved deepfake audio spoofing CEO Karim Toubba, according to BleepingComputer.
Windows systems across Latin America have been targeted with malicious payloads delivered through a sophisticated phishing attack campaign, The Hacker News reports.
BleepingComputer reports that phishing attacks with an updated JSOutProx remote access trojan variant have been deployed against financial entities in South and Southeast Asia, the Middle East, and Africa.
Organizations in the oil and gas industry have been targeted with a phishing campaign that involved the deployment of a new Rhadamanthys information-stealing malware variant, The Hacker News reports.