Alerts | Guyana National CIRT

AL2023_30 New Cactus Ransomware Encrypts itself to evade Antivirus (12th May 2023)

A new ransomware has been detected known as Cactus. It has the capabilities of exploiting vulnerabilities in Virtual Private Network (VPN) appliances for access to networks for enterprise level operations.

Read more about AL2023_30 New Cactus Ransomware Encrypts itself to evade Antivirus (12th May 2023)

AL2023_29 ViperSoftX malware now targets password managers and features updated encryption (11th May 2023)

The ViperSoftX malware, making headlines in 2022 as a cryptocurrency stealer receives new updates where the malware targets passwords managers

Read more about AL2023_29 ViperSoftX malware now targets password managers and features updated encryption (11th May 2023)

AL2023_28 Fake ChatGPT Desktop Client steals Chrome Login Data (10th May 2023)

It has been discovered that an infostealer is mimicking a ChatGPT Windows desktop client that has the capabilities of copying saved credentials from the Google Chrome login data folder.

Read more about AL2023_28 Fake ChatGPT Desktop Client steals Chrome Login Data (10th May 2023)

AL2023_27 Hackers can now have concealed VNC access to Windows devices thanks to new LOBSHOT Malware. (10th May 2023)

Cybersecurity researchers discovered a new malware dubbed ‘LOBSHOT’ that is being spread via Google ads.

Read more about AL2023_27 Hackers can now have concealed VNC access to Windows devices thanks to new LOBSHOT Malware. (10th May 2023)

AL2023_26 RTM Locker ransomware for Linux targets servers running VMware ESXi (4th May 2023)

RTM Locker is the most current ransomware campaign that targets organizations and has been found to target virtual machines on VMware ESXi systems utilizing a Linux encryptor.

Read more about AL2023_26 RTM Locker ransomware for Linux targets servers running VMware ESXi (4th May 2023)