Alessandro Mascellino
Infosecurity
United Kingdom
Contact Alessandro
Discover and connect with journalists and influencers around the world, save time on email research, monitor the news, and more.
| Recent: |
|
| Past: |
|
Past articles by Alessandro:
YoroTrooper Espionage Campaigns Target CIS, EU Countries
The threat actors mainly targeted organizations across Azerbaijan, Tajikistan and Kyrgyzstan → Read More
DEV-1101 Updates Open Source Phishing Kit
The kit is written in NodeJS and has automated setup and detection evasion capabilities → Read More
CISA Creates New Ransomware Vulnerability Warning Program
The Agency will warn critical infrastructure entities to enable mitigation before an incident → Read More
Remote Code Execution and Camera Access Flaws Found in Smart Intercoms
13 vulnerabilities were found in the E11 smart intercom devices by Chinese manufacturer Akuvox → Read More
Dark Pink APT Group Deploys KamiKakaBot Against South Asian Entities
The relationship between Europe and ASEAN countries is being exploited with social engineering lures → Read More
Infostealers Spread Via AI-Generated YouTube Videos
Infostealers observed to be delivered via these videos included Vidar, RedLine and Raccoon → Read More
IceFire Ransomware Targets Linux Enterprise Networks
The campaign leveraged the exploitation of a flaw in IBM's Aspera Faspex file-sharing software → Read More
Remcos Trojan Returns to Most Wanted Malware List After Ukraine Attacks
Weekly attacks targeting Ukraine decreased by 44% between October 2022 and February 2023 → Read More
8220 Gang Behind ScrubCrypt Attack Targeting Oracle Weblogic Server
ScrubCrypt malware obfuscates and encrypts applications to evade antivirus detection → Read More
Acer Confirms Unauthorized Access But Says No Consumer Data Stolen
Kernelware threat actor claimed responsibility for the hack on a dark web forum → Read More
US RESTRICT Act Gains Supports, Empowers Biden to Ban Foreign Tech
The White House and a bipartisan group of 12 senators have endorsed the legislation → Read More
Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw
The North Korean threat actor known as Lazarus Group has been spotted exploiting flaws in unnamed software to gain access to a South Korean finance firm twice last year. The news comes from security researchers at Asec, who published an advisory about the attacks on Tuesday. The company recorded the first of the attacks in May 2022, while the second occurred in October of the same year. Both… → Read More
SYS01 Stealer Targets Critical Infrastructure With Google Ads
The campaign lured Facebook business accounts with Google ads and fake Facebook profiles → Read More
Sharp Panda Target Southeast Asia in Espionage Campaign Expansion
New campaign leverages a new version of the SoulSearcher loader and the Soul modular framework → Read More
Shein App Accessed Clipboard Data on Android Devices
The findings come from Microsoft, in an advisory published on Monday → Read More
Ransomware Attack Against Barcelona Hospital Disrupts Operations
A Catalonia government statement attributed the attack to the threat actor known as RansomHouse → Read More
Almost Half of Industrial Sector Computers Affected By Malware in 2022
Kaspersky said the figures represented a 1.5 increase compared with the second half of 2021 → Read More
EPA Calls For Cybersecurity Improvements in Public Water Systems
The memorandum highlights the need for states to include cybersecurity in periodic audits → Read More
DoppelPaymer Ransomware Gang Members Busted in Germany, Ukraine
Police also seized electronic equipment and are currently performing forensic examinations → Read More
New Backdoor MQsTTang Attributed to Mustang Panda Group
Unlike the group’s usual tactics, MQsTTang only has a single stage and does not use obfuscation → Read More