Bitcoin
Bitcoin (BTC)
$100,733.00 5.70261
Bitcoin price
Ethereum
Ethereum (ETH)
$3,796.74 6.51262
Ethereum price
BNB
BNB (BNB)
$698.53 6.31992
BNB price
Solana
Solana (SOL)
$229.52 10.50662
Solana price
XRP
XRP (XRP)
$2.43 19.03172
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000289 15.71985
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000249 8.27606
Pepe price
Bonk
Bonk (BONK)
$0.0000391 14.69968
Bonk price
dogwifhat
dogwifhat (WIF)
$3.07 14.34323
dogwifhat price
Popcat
Popcat (POPCAT)
$1.27 19.42529
Popcat price
Bitcoin
Bitcoin (BTC)
$100,733.00 5.70261
Bitcoin price
Ethereum
Ethereum (ETH)
$3,796.74 6.51262
Ethereum price
BNB
BNB (BNB)
$698.53 6.31992
BNB price
Solana
Solana (SOL)
$229.52 10.50662
Solana price
XRP
XRP (XRP)
$2.43 19.03172
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000289 15.71985
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000249 8.27606
Pepe price
Bonk
Bonk (BONK)
$0.0000391 14.69968
Bonk price
dogwifhat
dogwifhat (WIF)
$3.07 14.34323
dogwifhat price
Popcat
Popcat (POPCAT)
$1.27 19.42529
Popcat price
Bitcoin
Bitcoin (BTC)
$100,733.00 5.70261
Bitcoin price
Ethereum
Ethereum (ETH)
$3,796.74 6.51262
Ethereum price
BNB
BNB (BNB)
$698.53 6.31992
BNB price
Solana
Solana (SOL)
$229.52 10.50662
Solana price
XRP
XRP (XRP)
$2.43 19.03172
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000289 15.71985
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000249 8.27606
Pepe price
Bonk
Bonk (BONK)
$0.0000391 14.69968
Bonk price
dogwifhat
dogwifhat (WIF)
$3.07 14.34323
dogwifhat price
Popcat
Popcat (POPCAT)
$1.27 19.42529
Popcat price
Bitcoin
Bitcoin (BTC)
$100,733.00 5.70261
Bitcoin price
Ethereum
Ethereum (ETH)
$3,796.74 6.51262
Ethereum price
BNB
BNB (BNB)
$698.53 6.31992
BNB price
Solana
Solana (SOL)
$229.52 10.50662
Solana price
XRP
XRP (XRP)
$2.43 19.03172
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000289 15.71985
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000249 8.27606
Pepe price
Bonk
Bonk (BONK)
$0.0000391 14.69968
Bonk price
dogwifhat
dogwifhat (WIF)
$3.07 14.34323
dogwifhat price
Popcat
Popcat (POPCAT)
$1.27 19.42529
Popcat price

Cybercrime group TA558 strikes phishing campaign against Latin America-based companies

cybercrime-group-ta558-strikes-phishing-campaign-against-latin-america-based-companies
Edited by
News
Cybercrime group TA558 strikes phishing campaign against Latin America-based companies

Threat actor TA558 has launched a new phishing campaign targeting Latin American sectors with Venom RAT, amid rising cyber threats exploiting DarkGate and malvertising.

Cybergang TA558 is once again targeting Latin American companies and government agencies in what appears to be a massive phishing campaign aimed at installing Venom RAT, a remote access trojan.

First reported by Idan Tarab, a threat analyst at Perception Point, the campaign casts its net wide, targeting industries in Spain, Mexico, the U.S., Colombia, Portugal, Brazil, the Dominican Republic, and Argentina. Although it remains uncertain if any crypto company based in Latin America fell victim to a breach orchestrated by TA558, Tarab stressed the extensive reach of the campaign, which spans beyond hotels and travel agencies to encompass fintech, manufacturing, and industrial enterprises.

According to Tarab, the latest attack chain utilizes phishing emails as the primary means of initial access, with Venom RAT being dropped subsequently. This particular strain, a derivative of Quasar RAT, is equipped with functionalities enabling the extraction of sensitive data (e.g. passwords, photos, financial records, and etc.) and remote system control.

TA558, known for its activities since at least 2018, has a history of focusing on entities within the Latin America region, employing a range of malware including Loda RAT, Vjw0rm, and Revenge RAT.

Earlier this year, cybersecurity researchers found a new phishing toolkit dubbed CryptoChameleon, targeting Federal Communications Commission employees and staff of crypto firms including Coinbase, Binance, Gemini, Kraken, ShakePay, and Trezor.

As detailed by analysts from Lookout, the attackers employ sophisticated social engineering tactics, leveraging convincing single sign-on pages mimicking authentic ones from Okta, a cloud service provider for authentication. This multi-stage assault encompasses emails, SMS, and voice phishing to coerce victims into divulging crucial credentials and sensitive information, primarily in the U.S.