MALWARE MONITOR VOL. 39

Sunday 30th of March 2025 14:12:33

Security Affairs Malware Newsletter - Round 39

A new malware campaign has been discovered targeting organizations in the Middle East and North Africa. The malware, known as "Specter," is a highly sophisticated and stealthy piece of malware that can evade detection by traditional security tools.

According to researchers at Kaspersky, Specter is a type of malware known as a "fileless" malware, which means it does not create any files on the infected device. Instead, it operates entirely in memory, making it difficult to detect and analyze.

The malware is designed to steal sensitive information, including login credentials and other sensitive data. It is also capable of encrypting files and demanding a ransom in exchange for the decryption key.

The researchers at Kaspersky believe that Specter is a highly advanced piece of malware, and that it is likely to be the work of a sophisticated threat actor.

In other news, a new vulnerability has been discovered in the popular open-source software, Apache Struts. The vulnerability, known as "CVE-2017-5638," allows an attacker to inject arbitrary code into the software, potentially allowing them to take control of the system.

The vulnerability was discovered by researchers at the University of California, Berkeley, and it is believed to be the work of a nation-state threat actor.

In related news, a new malware campaign has been discovered targeting organizations in the United States. The malware, known as "WannaCry," is a type of ransomware that demands a ransom in exchange for the decryption key.

According to researchers at Symantec, WannaCry is a highly sophisticated piece of malware, and that it is likely to be the work of a sophisticated threat actor.

The malware is designed to encrypt files and demand a ransom in exchange for the decryption key. It is also capable of spreading quickly across a network, potentially causing widespread damage.

The researchers at Symantec believe that WannaCry is a highly advanced piece of malware, and that it is likely to be the work of a sophisticated threat actor.

In other news, a new vulnerability has been discovered in the popular open-source software, OpenSSL. The vulnerability, known as "CVE-2016-2183," allows an attacker to inject arbitrary code into the software, potentially allowing them to take control of the system.

The vulnerability was discovered by researchers at the University of California, Berkeley, and it is believed to be the work of a nation-state threat actor.

In related news, a new malware campaign has been discovered targeting organizations in the United States. The malware, known as "Sage," is a type of malware that steals sensitive information and uses it to commit financial fraud.

According to researchers at Symantec, Sage is a highly sophisticated piece of malware, and that it is likely to be the work of a sophisticated threat actor.

The malware is designed to steal sensitive information, including login credentials and other sensitive data. It is also capable of using the stolen information to commit financial fraud, potentially causing significant financial losses.

The researchers at Symantec believe that Sage is a highly advanced piece of malware, and that it is likely to be the work of a sophisticated threat actor.