Alerts | Guyana National CIRT

AL2023_50 Chinese APT15 hackers resurface with new Graphican malware (June 21, 2023)

A Chinese state-sponsored hacking group, commonly known as APT15 has recently been observed conducting a new campaign utilizing a unique backdoor called 'Graphican'.

Read more about AL2023_50 Chinese APT15 hackers resurface with new Graphican malware (June 21, 2023)

AL2023_49 New Mystic Stealer malware increasingly used in attacks (June 20, 2023)

A newly discovered malicious software known as 'Mystic Stealer' has recently surfaced in the cybercrime community.

Read more about AL2023_49 New Mystic Stealer malware increasingly used in attacks (June 20, 2023)

AL2023_48 New Horabot operation hijacks victims' Gmail and Outlook accounts (19th June 2023)

Horabot allows a threat actor to take control of the victim's Outlook mailbox, steal contacts' email addresses, and send phishing emails with malicious HTML attachments to all addresses in the victim's mailbox.

Read more about AL2023_48 New Horabot operation hijacks victims' Gmail and Outlook accounts (19th June 2023)

AL2023_47 Online Sellers Targeted by New Information-Stealing Malware Campaign (June 15, 2023)

Online sellers are being targeted in a new campaign to push the information-stealing malware known as Vidar, allowing threat actors to steal credentials for more damaging attacks.

Read more about AL2023_47 Online Sellers Targeted by New Information-Stealing Malware Campaign (June 15, 2023)

AL2023_46 A new zero-day vulnerability in MOVEit Transfer has been widely exploited in data theft attempts (12th June 2023)

A malicious MOVEit Transfer user could create and save a payload within the MOVEit Transfer app.

Read more about AL2023_46 A new zero-day vulnerability in MOVEit Transfer has been widely exploited in data theft attempts (12th June 2023)