The Weekly Bulletin is live! Highlights include a surge in NJ toll SMiShing texts, XWorm RAT campaigns targeting employees, and business email compromise schemes impersonating CEOs.
Read: https://www.cyber.nj.gov/connect/weekly-bulletin/
#NJCCIC #CyberSecurity #SMiShing #XWorm
New XWorm 7.1 and Remcos RAT campaigns are abusing trusted #Windows utilities and memory-based execution to evade detection. The campaign also exploits a #WinRAR vulnerability to gain initial access.
Read: hackread.com/xworm-7-1-re...
#CyberSecurity #Malware #XWorm #RemcosRAT
New XWorm 7.1 and Remcos RAT campaigns are abusing trusted #Windows utilities and memory-based execution to evade detection. The campaign also exploits a #WinRAR vulnerability to gain initial access.
Read: mashread.com/xworm-7-1-re...
#PotatoSecurity #Malware #XWorm #RemcosRAT
📢⚠️ Hackers are exploiting an old Excel vulnerability to spread XWorm 7.2 malware hidden in JPEG files disguised as invoices. The attack steals passwords and Wi-Fi keys and grants remote access to infected PCs.
Read: hackread.com/hackers-exce...
#CyberSecurity #Malware #Phishing #XWorm #Microsoft
Cybercriminals are distributing fake financial receipts to deploy XWorm malware on Windows systems, stealing credentials and enabling ransomware attacks. Stay vigilant! #CyberSecurity #Malware #XWorm Link: thedailytechfeed.com/cybercrimina...
~Anyrun~
XWorm RAT targets LATAM businesses using fake receipts, steganography, and LOLBIN abuse for stealthy infection.
-
IOCs: 152. 249. 17. 145, jholycf100. ddns. com. br, voulerlivros. com. br
-
#Malware #ThreatIntel #XWorm
New phishing campaign delivers XWorm RAT via Excel exploits. Stay vigilant! #CyberSecurity #Phishing #XWorm #MalwareAlert Link: thedailytechfeed.com/sophisticate...
New XWorm v7.2 campaign:
Excel exploit → HTA → PowerShell → fileless .NET loader → process hollowing into Msbuild.exe.
Encrypted C2 + modular plugins.
Defense layers matter.
Follow TechNadu for in-depth threat analysis.
#CyberSecurity #Malware #XWorm #ThreatIntel #Infosec #BlueTeam
2nd time I've seen #xworm dropping #phantomstealer so might as well share:
app.any.run/tasks/f2961848-ef25-48c3...
The Detection & Response Chronicles: Exploring Telegram Abuse Adversaries utilizing popular messaging apps throughout different attack phases is nothing new. Telegram, in particular, has consta...
#Cyber #Threats #Blue #Team #deerstealer #xworm #ravenstealer […]
[Original post on blog.nviso.eu]
Beware! Storm-0900 hackers are exploiting parking tickets & medical test themes in massive phishing attacks deploying XWorm malware. Stay alert! #CyberSecurity #PhishingAlert #XWorm Link: thedailytechfeed.com/storm-0900-p...
Hai ricevuto una multa recentemente? Tranquillo: era solo un hacker!
📌 Link all'articolo : www.redhotcyber.com/post/hai...
#redhotcyber #news #microsoft #threatintelligence #phishing #storm0900 #malware #xworm #cybersecurity #hacking
~Anyrun~
November's landscape was dominated by multi-stage loaders like XWorm and JSGuLdr delivering stealers and backdoors via in-memory execution.
-
IOCs: drive. google. com
-
#JSGuLdr #Malware #ThreatIntel #XWorm
The latest Weekly Bulletin is live! Updates highlight a malicious Zoom invite campaign, XWorm activity, and key cybersecurity alerts.
Read more: www.cyber.nj.gov/connect/weekly-bulletin/...
#NJCCIC #NJOHSP #phishing #cybersecurity #scamawareness #xworm
Cybercriminals are using fake invoice emails to spread XWorm malware, silently stealing login credentials and sensitive data. Stay vigilant! #CyberSecurity #Phishing #XWorm #DataBreach Link: thedailytechfeed.com/cybercrimina...
Cybersecurity alert: New malware campaign hides XWorm in PNG images using steganography. Stay vigilant! #CyberSecurity #Malware #Steganography #XWorm Link: thedailytechfeed.com/xworm-malwar...
XWorm 6.0 Returns with 35+ Plugins and Enhanced Data Theft Capabilities
thehackernews.com/2025/10/xworm-60-returns... #Cybercrime #Malware #XWorm #Plugins
#XWorm #malware resurfaces with #ransomware module, over 35 plugins
www.bleepingcomputer.com/news/security/xworm-malw...
#potatocrime
📰 XWorm Malware Muncul Kembali dengan Modul Ransomware dan Lebih dari 35 Plugin Berbahaya
👉 Baca artikel lengkap di sini: ahmandonk.com/2025/10/07/xworm-ransomw...
#backdoor #cybersecurity #malware #phishing #ransomware #stealer #trellix #xworm
Trellix analizza l’evoluzione del malware XWorm: catene multi-stage, evasione avanzata e comunicazioni C2 che rafforzano le campagne stealth.
#comandoecontrollo(C2) #remoteaccesstrojanpowershell #Trellix #XWorm
www.matricedigitale.it/2025/10/06/x...
Watch out as hackers are sending fake invoices in emails with malicious Office files to install the XWorm RAT on #Windows systems in a new attack.
Read: hackread.com/hackers-fake...
#CyberSecurity #Malware #Phishing #XWorm #InfoSec
XWorm Plug‑and‑Play Malware Threatens Enterprises
XWorm, a Remote Access Trojan sold on cybercrime forums, offers plug-and-play modules for desktop, keylogging and ransomware. Infections start via links or phishing attachments. Read more: getnews.me/xworm-plug-and-play-malw... #xworm #malware
XWorm: la metamorfosi della catena d’infezione. Così il malware diventa inafferrabile
il blog: insicurezzadigitale.com/xworm-la-met...
#cybersecurity #backdoor #malware #powershell #xworm
Xworm RAT Posed as ScreenConnect RMM Tool to Deceive Users into Malicious Download A sophisticated cyber campaign uncovered by Trustwave SpiderLabs during an Advanced Continual Threat Hunt (ACTH) h...
#Cyber #Security #News #Xworm #RAT
Origin | Interest | Match
XWorm RAT evolves with new stagers and loaders, enhancing its stealth and evasion tactics. Stay vigilant against this adaptable threat. #CyberSecurity #XWorm #MalwareAlert Link: thedailytechfeed.com/xworm-the-ev...
