Topic: command- -control infrastructure
-
Hackers Exploit Microsoft ClickOnce & AWS for Stealth Attacks
The OneClik cyberattack campaign exploits Microsoft ClickOnce and custom Golang malware to target energy sector organizations, disguising malicious traffic within legitimate AWS cloud services. Attackers use phishing emails with fraudulent Azure-hosted sites to distribute malicious ClickOnce file...
Read More » -
Silver Fox APT Hits Taiwan with Dual Remote Access Malware
APT group Silver Fox has launched a focused attack on Taiwanese entities using a combination of HoldingHands RAT and a Gh0stCringe variant. Delivered through tax-themed phishing emails, the campaign blends quiet persistence with active surveillance, revealing a methodical strategy to evade detection and maintain access. Here’s what researchers uncovered.
Read More » -
Trinper Backdoor Abused Chrome Zero-Day in Espionage Campaign
Google Chrome’s CVE-2025-2783 zero-day was quietly exploited by the espionage group TaxOff to deploy Trinper, a modular backdoor used in highly targeted campaigns. Before the March patch rolled out, Trinper was already stealing clipboard data and establishing covert control in high-value systems. Our breakdown of the campaign reveals how browsers are becoming the new frontline for cyber intrusion.
Read More »
