Phishing

Cobalt Strike Beacon, Sophos, Phishing

Covert Delivery of Cobalt Strike Beacon via Sophos Phishing Website

/ 6 minutes of reading

Key Takeaways Overview Cyble Research & Intelligence Labs (CRIL) came across a typosquatted domain of  Sophos, “sopbos[.]com”, using a VirusTotal search. The phishing site impersonates the installation of the Sophos Home. The initial infection vector is unclear at this time as we could not trace how users would be directed to this phishing site. Based …

Covert Delivery of Cobalt Strike Beacon via Sophos Phishing Website Read More »

SimayRAT, Ghost RAT, Phishing, Remote Access Trojan

Sophisticated SiMay RAT Spreads Via Telegram Phishing Site

/ 11 minutes of reading

  Keylogger and Gh0st RAT Variant deployed to spy on Users   Threat actors (TAs) have been relentlessly employing diverse techniques to propagate malware by leveraging counterfeit websites of renowned applications. Cyble Research and Intelligence Labs (CRIL) reported on a trojanized version of Telegram specifically aimed at Chinese users. Telegram is a widely used application, …

Sophisticated SiMay RAT Spreads Via Telegram Phishing Site Read More »

Cyble-Blogs-CapCut-Malware

CapCut Users Under Fire

/ 8 minutes of reading

CRIL has uncovered a phishing campaign that targets unsuspecting CapCut users, aiming to steal their sensitive information.

Scroll to Top