AI is changing cyber threats—attackers now use agentic AI to launch ransomware & data theft in minutes. Organizations must adopt smarter, faster defenses to keep up. #Cybersecurity #AI #Unit42 | Read the article 🔗 https://zurl.co/QCPmP

A new linux malware, called Auto-Color, was discovered by cybersecurity researchers at Palo Alto Networks' Unit 42, a team specializing in analyzing and uncovering cyber threats. This malware (backdoor) is a tool used by hackers to secretly gain access to computers running the Linux operating system, allowing them to carry out harmful activities while staying hidden.

Auto-Color is designed to be extremely stealthy. For example, it camouflages itself within the system and alters activity logs to make everything appear normal. It’s like an invisible burglar who not only sneaks into your digital “house” but also covers their tracks so you don’t notice their presence. This makes it difficult for security tools to detect and block its actions.

https://unit42.paloaltonetworks.com/new-linux-backdoor-auto-color/

#cybersecurity #malware #linux #backdoor #autocolor #paloaltonetworks #unit42

📬 KI-generierte Malware: Unbegrenzte Möglichkeiten für Kriminelle
#KünstlicheIntelligenz #Malware #ChatGPT #GenerativeKI #KIMalware #LLMs #Unit42 #WormGPT https://sc.tarnkappe.info/a5082e

From Unit 42: Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript https://unit42.paloaltonetworks.com/using-llms-obfuscate-malicious-javascript/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

🚨 Threat Alert! 🚨 Unit 42 reveals a phishing campaign exploiting HubSpot to harvest Microsoft Azure credentials, targeting European companies. With 20,000 users affected, attackers used urgency tactics and fraudulent forms. Stay vigilant! 🔒💻
Learn more about this ongoing threat: https://cyberinsider.com/threat-actors-exploit-hubspot-to-harvest-microsoft-azure-credentials/
#CyberSecurity #Phishing #MicrosoftAzure #HubSpot #Unit42 #newz

From Unit 42: Effective Phishing Campaign Targeting European Companies and Institutions https://unit42.paloaltonetworks.com/european-phishing-campaign/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: LDAP Enumeration: Unveiling the Double-Edged Sword of Active Directory https://unit42.paloaltonetworks.com/lightweight-directory-access-protocol-based-attacks/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration https://unit42.paloaltonetworks.com/azure-data-factory-apache-airflow-vulnerabilities/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Crypted Hearts: Exposing the HeartCrypt Packer-as-a-Service Operation https://unit42.paloaltonetworks.com/packer-as-a-service-heartcrypt-malware/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

#Unit42 investigates cybercriminals exploiting major events to launch phishing scams and distribute malware through suspicious domain registrations. This article includes case studies centered around the recent Paris Olympics. https://bit.ly/4f5sOAw

From Unit 42: Network Abuses Leveraging High-Profile Events: Suspicious Domain Registrations and Other Scams https://unit42.paloaltonetworks.com/suspicious-domain-registration-campaigns/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Threat Assessment: Howling Scorpius (Akira Ransomware) https://unit42.paloaltonetworks.com/threat-assessment-howling-scorpius-akira-ransomware/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Lateral Movement on macOS: Unique and Popular Techniques and In-the-Wild Examples https://unit42.paloaltonetworks.com/unique-popular-techniques-lateral-movement-macos/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Threat Assessment: Ignoble Scorpius, Distributors of BlackSuit Ransomware https://unit42.paloaltonetworks.com/threat-assessment-blacksuit-ransomware-ignoble-scorpius/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: FrostyGoop’s Zoom-In: A Closer Look into the Malware Artifacts, Behaviors and Network Communications https://unit42.paloaltonetworks.com/frostygoop-malware-analysis/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-0012 https://unit42.paloaltonetworks.com/cve-2024-0012-cve-2024-9474/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack https://unit42.paloaltonetworks.com/fake-north-korean-it-worker-activity-cluster/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: Global Companies Are Unknowingly Paying North Koreans: Here’s How to Catch Them https://unit42.paloaltonetworks.com/north-korean-it-workers/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

From Unit 42: ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI https://unit42.paloaltonetworks.com/privilege-escalation-llm-model-exfil-vertex-ai/?utm_source=dlvr.it&utm_medium=mastodon ( :-{ı▓ #unit42 #threathunting #threatintel

🔍 Did you know? Outdated software is a favorite target for cybercriminals. The Silent Skimmer is exploiting unpatched vulnerabilities in Telerik UI, targeting payment systems to steal sensitive data!

🔐 Pro Tip: Prioritize patching and regular security audits to defend against these stealthy attacks.

💬 What are your best practices for staying on top of patches? Let’s share knowledge to stay ahead of threats.

Read more on the latest threat: https://guardiansofcyber.com/threats-vulnerabilities/silent-skimmer-flaws/

#Cybersecurity #GuardiansOfCyber #PatchManagement #DataSecurity #ThreatIntelligence #VulnerabilityManagement #InfoSec #Unit42 #SilentSkimmer #Guardians