March 21, 2026
March 21, 2026 Hash 1d4a689ab2c54790d8d9ae9f879b94789 26098ebe696cd481df10c313cbcca9450 3fd45cc805a861bc3bf8a4c0a904fa6a5 URL 1http[:]//to[.]lk/setdvc 2http[:]//xmartind[.]com/ 3http[:]//i657261756174686c6574696373o636f6dz[.]oszar[.]com/ IP 1103[.]13[.]207[.]34 243[.]160[.]211[.]132 3103[.]63[.]108[.]25...
Attack case against MS-SQL server installing ICE Cloud scanner (Larva-26002)
AhnLab SEcurity intelligence Center (ASEC) has confirmed that the Larva-26002 threat actor continues to target improperly managed MS-SQL servers in 2026. The Larva-26002 threat actor has distributed Trigona and Mimic ransomware in the past, and has since seized control of infected systems and installed scanners. the latest confirmed attack utilizes
March 20, 2026
March 20, 2026 Hash 11be12a86a061cbf2b2267e31729fa88a 22df21063d5a8f52cb69cc87988352456 3f30ec68327f1310f0d859e489680ff6d URL 1https[:]//opt[.]listarmor[.]com/unsub/HADx3CsXgcV6BOtJaNkSZ9Kh 2http[:]//lasopaster751[.]weebly[.]com/ 3https[:]//arizonasewersolution[.]com/ IP 1185[.]213[.]175[.]140 296[.]246[.]230[.]97 3120[.]48[.]181[.]192...
March 19, 2026
March 19, 2026 Hash 19638f919cc9ff937195358497bda5ba3 2434f17a18590fc94d5e64ae70090cc7e 316c6a1ed6955f7102611e833425bac49 URL 1https[:]//macromex[.]mx/2023/12/crazy-attila-mobile-monkey-recipe 2https[:]//casualluxuryoffsites[.]com/ 3http[:]//172[.]245[.]95[.]24/inverstorrneeepng[.]png IP 1120[.]71[.]149[.]30 2114[.]34[.]106[.]146 345[.]138[.]16[.]234...
February 2026 APT Attack Trends Report (South Korea)
Overview AhnLab utilizes its infrastructure to monitor for Advanced Persistent Threat (APT) attacks in South Korea. This report covers the classification and statistics on APT attacks on South Korea targets identified during the month of February 2026, and introduces the features of each type. Figure 1. Statistics on APT
Ransom & Dark Web Issues Week 3, March 2026
ASEC Blog publishes Ransom & Dark Web Issues Week 3, March 2026 New Threat Actor CipherForce Claims Cyberattack on South Korean Job Portal New Threat Actor Loki Emerges, Leaks US Citizens’ Personal Data Cybercrime Forum LeakBase Shut Down Again by Russian Authorities
Sequelize Security Update Advisory (CVE-2026-30951)
Overview We have released a security update that addresses a vulnerability in Sequelize. Users of affected products are advised to update to the latest version. Affected Products CVE-2026-30951 Sequelize version: 6.37.7 and earlier Resolved Vulnerabilities SQL Injection Vulnerability in Sequelize (CVE-2026-30951)
March 18, 2026
March 18, 2026 Hash 1eb5772845877159df5233597d278ceae 23ae61ec274a3f6c33f714420d89dcf35 39cb0a5a68d81393c56542dab3657b0f1 URL 1http[:]//tracking[.]tgmfr[.]com/aff_c?offer_id=2853&aff_id=2762&aff_sub=xxx&aff_sub2=3f87f-8ba4-da7-50008 2http[:]//futain-china[.]com/ 3https[:]//eohllointeb[.]click/ IP 1137[.]131[.]239[.]171 243[.]157[.]213[.]31 3183[.]101[.]211[.]129...
Apple Family March 2026 1st Security Update Advisory
Overview Apple(https://apple.com) has released a security update that addresses a vulnerability in a product it has supplied. affected Xeem users are advised to update to the latest version. Affected Products IPhone 8 IPhone 8 Plus IPhone X IPad 5th generation IPad Pro 9.7-inch IPad Pro 12.9-inch 1st
Google Chrome browser (146.0.7680.80) security update advisory
Overview Google has released an update to address a vulnerability in the Chrome(https://www.google.com/chrome) browser. Users of affected versions are advised to update to the latest version. Affected Products Chrome before version 146.0.7680.80 (Linux) Chrome before version 146.0.7680.80 (Windows/Mac) Resolved Vulnerabilities High-level out-of-bounds write vulnerabilities in
