Securelist

MoonBounce: the dark side of UEFI firmware

6 days 13 hours ago

At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41.

Mark Lechtik, Vasily Berdnikov, Denis Legezo, Ilya Borisov

Campaigns abusing corporate trusted infrastructure hunt for corporate credentials on ICS networks

Securelist

1 week ago

Kaspersky ICS CERT has uncovered a number of spyware campaigns targeting industrial enterprises.

Kirill Kruglov

The BlueNoroff cryptocurrency hunt is still on

Securelist

1 week 6 days ago

It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income.

Seongsu Park, Vitaly Kamluk

Checked

2 hours 27 minutes ago

URL

https://securelist.com

Subscribe to Securelist feed