Threat Research

    Distribution of PebbleDash Malware in March 2025

    In March 2025, the PebbleDash backdoor malware, previously linked to the Lazarus group, was observed being distributed in new campaigns targeting individuals. The latest activity includes the use of additional malware and modules alongside PebbleDash to enhance its capabilities....
    4/29/2025  0
    Read More »

    Vishing via Microsoft Teams Facilitates DarkGate Malware Intrusion

    In a recent incident, an attacker used social engineering through a Microsoft Teams call to impersonate a client and gain remote access to a victim's system. The attacker successfully tricked the victim into downloading AnyDesk, a remote access tool, and dropped suspicious files, including Trojan.AutoIt.DARKGATE.D....
    12/25/2024  0
    Read More »

    Remote Access Tool - Action1 Arbitrary Code Execution and Remote Sessions

    "Remote Access Tool - Action1 Arbitrary Code Execution and Remote Sessions" addresses vulnerabilities in the Action1 remote access tool that allow for arbitrary code execution and unauthorized remote sessions. These security flaws enable attackers to execute malicious code on a target system or gain unauthorized remote access, potentially compromising the system and its data....
    8/30/2024  0
    Read More »
    Looking for Something?
    Threat Research Categories:
    Tags

    Privacy & Security StatementTerms & Conditions
    Copyright © 2026 by Gurucul - All rights reserved.