Crooks found a new way to collaborate using Teams – by hiding command-and-control traffic

Custom malware routed communications through legitimate Microsoft services, making malicious activity look like routine ...
Infosecurity Magazine

DragonForce Ransomware Exploited Microsoft Teams to Hide in Attack Against Major Company

Command and control traffic exploited a Teams visitor token to make malicious activity look legitimate to defenders ...
The Hacker News

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline

Cato Networks tracked Poisson using OpenSSH and Tailscale to maintain access after Havoc C2 outage in a 33-day intrusion.
SecurityWeek

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

DragonForce ransomware operators are using a new backdoor that relies on Microsoft Teams relay servers for C&C.

WordPress malware uses Steam profile comments for command and control

The comments on some Steam Profiles are actually loaded with invisible malware.
The Next Web

A new Android trojan called Rokarolla targets 217 banking apps and can steal your PIN, SMS codes, and crypto wallet funds

Zimperium's zLabs found Rokarolla, an Android banking trojan with 137 commands that steals PINs, intercepts SMS, hijacks crypto payments, and kills Play Protect.
CSOonline

New Mirai botnet fires off DDoS attacks via compromised Mitel phones, notifies command & control when detected

Aquabotv3 is actively exploiting a known vulnerability in Mitel devices to include them in its botnet, according to Akamai's Security Intelligence and Response Team. A third variant of the Mirai-based ...