Alerts | Guyana National CIRT

AL2023_60 Using OCR, new Android spyware steals login information from photos. (2nd August 2023)

Two new Android malware families called 'CherryBlos' and 'FakeTrade' were identified stealing cryptocurrency credentials and funds and conducting frauds.

Read more about AL2023_60 Using OCR, new Android spyware steals login information from photos. (2nd August 2023)

AL2023_59 FIN8 deploys ALPHV ransomware using Sardonic malware variant (July 20, 2023)

A financially motivated cybercriminal group known as FIN8 has recently been observed using a new variant of the Sardonic malware to deploy BlackCat ransomware payloads.

Read more about AL2023_59 FIN8 deploys ALPHV ransomware using Sardonic malware variant (July 20, 2023)

AL2023_58 USB drive malware attacks spiking again in the first half of 2023 (July 19, 2023)

A recent report by Mandiant sheds light on two notable USB-delivered malware campaigns witnessed this year: Sogu and Snowydrive.

Read more about AL2023_58 USB drive malware attacks spiking again in the first half of 2023 (July 19, 2023)

AL2023_57 BlackCat ransomware uses new malvertising technique to infect devices (July 12, 2023)

The BlackCat ransomware group (ALPHAV) was seen utilizing malvertising campaigns to lure targets and compromise their devices with malware.

Read more about AL2023_57 BlackCat ransomware uses new malvertising technique to infect devices (July 12, 2023)

AL2023_56 300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug (July 06, 2023)

A significant security issue, identified as CVE-2023-27997, has left hundreds of thousands of FortiGate firewalls vulnerable.

Read more about AL2023_56 300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug (July 06, 2023)