PassiveNeuron: a sophisticated campaign targeting servers of high-profile organizations

Back in 2024, Kaspersky researchers gave a brief description of a complex cyberespionage campaign that we dubbed “PassiveNeuron”. This campaign involved compromising the servers of government organizations with previously unknown APT implants, named “Neursite” and “NeuralExecutor”. However, since its discovery, Read More …

Maverick: a new banking Trojan abusing WhatsApp in a mass-scale distribution

A malware campaign was recently detected in Brazil, distributing a malicious LNK file using WhatsApp. It targets mainly Brazilians and uses Portuguese-named URLs. To evade detection, the command-and-control (C2) server verifies each download to ensure it originates from the malware Read More …

HSBC warns UK business banking customers of third-party data breach

HSBC has warned business banking customers that personal identification documents submitted during account applications may have been compromised following unauthorised access to a third-party platform. In an email sent to customers earlier this month, the bank confirmed that identity documents, Read More …

India: Thousands of bank transfer records found spilling online after security lapse

A data spill from an unsecured cloud server has exposed hundreds of thousands of sensitive bank transfer documents in India, revealing account numbers, transaction figures, and individuals’ contact details. Researchers at cybersecurity firm UpGuard discovered in late August a publicly Read More …

Vietnam Investigates Hackers Targeting National Credit Database Exposing Sensitive Financial Data

Vietnam is investigating a serious cyberattack on a large database that contains information about creditors across the country. The database belongs to the National Credit Information Center, also known as CIC. This center is managed by the State Bank of Read More …

PayPal glitch triggers chaos as European banks freeze ‘billions’ in transactions

European banks temporarily froze PayPal transactions worth billions after fraud system failure triggered widespread suspension of direct debits and delayed payments for online merchants and customers. A number of German lenders, including Bayerische Landesbank, Hessische Landesbank and DZ-Bank, reportedly halted Read More …

TransUnion says hackers stole 4.4 million customers’ personal information

Credit reporting giant TransUnion has disclosed a data breach affecting more than 4.4 million customers’ personal information. In a filing with Maine’s attorney general’s office on Thursday, TransUnion attributed the July 28 breach to unauthorized access of a third-party application Read More …

GodRAT – New RAT targeting financial institutions

In September 2024, Kaspersky researchers detected malicious activity targeting financial (trading and brokerage) firms through the distribution of malicious .scr (screen saver) files disguised as financial documents via Skype messenger. The threat actor deployed a newly identified Remote Access Trojan Read More …

UNODC: Organized crime dynamics in the context of war in Ukraine

This report aims to address the following overarching questions: how has the ongoing war against Ukraine affected organized crime and illicit markets in Ukraine, and what are the possible implications for the country, the region and the international community? These Read More …