Welcome to our bi-weekly cybersecurity roundup. In these blog posts, we feature curated articles and insights from experts, providing you with valuable information on the latest cybersecurity threats, technologies, and best practices to keep yourself and your organization safe. Whether you’re a cybersecurity professional or a concerned individual, our weekly blog post is designed to keep you informed and empowered.

For more articles, check out our #onpatrol4malware blog.

FBI, Europol smash global dark web drug empire with Operation SpecTor

Source: SC Media

A massive international operation targeting dark web markets culminated in 288 arrests, the seizure of 1,875 pounds of drugs and more than $50 million in cash and cryptocurrency, authorities said Tuesday. Read more.

Google Takes Legal Action Against CryptBot Malware Distributors

Source: Secure World

The malware targets Google Chrome users and aims to steal their sensitive data such as social media logins, cryptocurrency wallets, and authentication credentials. Read more.

Netskope Threat Coverage: CrossLock Ransomware

Source: Netskope

This ransomware was written in Go, which has also been adopted by other ransomware groups, including Hive, due to the cross-platform capabilities offered by the language. Read more.

What does ChatGPT know about phishing?

Source: SecureList

In this article, SecureList provides a practical example of how an LLM can be applied to a real, albeit simplified, cybersecurity task, and describe all the interesting things they learned along the way. Read more.

Raspberry Robin: A global USB malware campaign providing access to ransomware operators

Source: BushidoToken

A number of threat intelligence reports by vendors such as RedCanary (who named it) and Microsoft (who track it as DEV-0856/Storm-0856) have covered the malware campaign in great detail. Read more.

New KEKW Malware Variant Identified in PyPI Package Distribution

Source: Cyble

Due to the widespread usage of PyPI, it has become a desirable target for Threat Actors (TAs) who aim to attack developers or their projects. Read more.

Cybercrime: here it comes Atomic, a new info-stealer for macOS

Source: Difesa & Sicurezza

Here it comes Atomic, a new info-stealer for macOS. The malware, aka AMOS, is sold with a $1,000-a-month subscription and can be used even by those without technical skills. Read more.