2024-02 | ||
GTPDOOR, a new Linux malware, is threatening the telecommunications industry via GPRS roaming | ||
Security researchers have discovered a new Linux malware called GTPDOOR that is designed to be deployed in telecom networks adjacent to GPRS roaming exchanges (GRX). The malware is novel in the fact that it leverages the GPRS Tunnelling Protocol (GTP) for Command and Control (C&C) communications to evade security detection. In addition, GTPDOOR, as a new backdoor variant, supports remote code execution and can be beaconed by randomly sending TCP packets to its host. |
2024-01 | ||
Title:Black market gangs empower malware with AI | ||
Researchers have uncovered a cybercriminal gang known as "GXC Team", who specializes in crafting tools for online banking theft, ecommerce deception, and internet scams. The group operated under the alias "googleXcoder" and made multiple announcements on the Dark Web. It has begun selling AI-powered tools for fraudulent invoices used for wire fraud and BEC. |