Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

January 8, 2025
No Comments

Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems.
“The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques,” Cyfirma said in a technical analysis published last week.
“It employs

Leave a Reply Cancel reply

It’s Time Businesses Address the UK’s Cybersecurity Talent Shortage January 9, 2025
UK Prime Minister Keir Starmer recently pledged to ‘Get Britain Working Again’. This comes as a new government whitepaper highlights a troubling rise in economic inactivity and stagnation in unemployment, currently hovering around 1.5 million. When we consider the UK’s cybersecurity sector, there is a major skills gap, presenting significant future employment opportunities. The government’s […]
Haris Pylarinos
Ivanti Warns of Active Exploitation of a Vulnerability in Connect Secure January 9, 2025
Organizations are urged to act swiftly to address vulnerabilities impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways by sticking to the latest guidance from the vendor. Ivanti has released a critical security update addressing these vulnerabilities, identified as CVE-2025-0282 and CVE-2025-0283. The fix is now available via Ivanti’s standard download portal. The company disclosed […]
Kirsten Doyle
VIPRE Security Shares Cybersecurity Trends for 2025 January 9, 2025
Last year saw increasingly sophisticated cybersecurity threats as malicious actors leveraged all forms of AI to create difficult-to-detect phishing attacks, deepfakes, and ransomware incidents. To counter these, organizations adopted AI-driven security solutions, including threat detection, automated incident response, and intelligent vulnerability management, to protect data and infrastructure. “In 2025, as AI evolves further in sophistication and […]
Kirsten Doyle
E-commerce Faced Heightened Cybersecurity Threats During Holiday Season January 8, 2025
While lucrative for e-commerce businesses, the holiday shopping season also brings a surge in cyber threats. A recent study by Liquid Web highlights a worrying trend: December, the most critical month for online retailers, sees a staggering 31% increase in cyberattacks compared to the yearly average. This means that while shoppers hunt for the perfect […]
Anastasios Arampatzis
Almost 8500 People Affected by Casio Data Leak January 8, 2025
Casio has said nearly 8500 people were affected by a ransomware attack that compromised its servers on 5 October last year. The attack led to data leaks, including internal documents and personal information, but no credit card information was included in the leaked information. Based on the investigation’s results, the company is in the process […]
Kirsten Doyle
Greece’s 2024 Cyber Threat Landscape: A Year of Increased and Varied Attacks January 7, 2025
The year 2024 proved challenging for cybersecurity in Greece, with a significant surge in the volume and sophistication of cyberattacks. Ransomware attacks, Distributed Denial-of-Service (DDoS) attacks, and Advanced Persistent Threats (APTs) all significantly disrupted businesses, government services, and critical infrastructure. Efstratios Lontzetidis, a Cyber Threat Intelligence Researcher based in Greece, provided a compelling round up […]
Anastasios Arampatzis
When is a RAT, not a RAT? January 7, 2025
Have you heard the story about the RAT that pretended to be a RAT? If not, you’d better sit down for this one. There’s a RAT in my kitchen Last month, a malicious package, ethereumvulncontracthandler, was identified on the npm registry. It disguised itself as a Remote Access Tool (RAT), posing as a library for […]
Adam Parlett
Moxa Devices Vulnerable to Cyberattacks, Threatening Industrial Networks January 7, 2025
Critical vulnerabilities discovered in Moxa’s industrial networking devices could allow privilege escalation and OS command injection, exposing critical infrastructure to potential cyberattacks. In a security advisory, Moxa said that affected models include EDR and TN series routers widely used in industrial automation, energy, and telecommunications. Successful exploitation could grant attackers control over devices, posing a […]
Kirsten Doyle
The Future of Cybersecurity: Leveraging AI SOC Analysts to Combat Evolving Threats January 6, 2025
At Information Security Buzz, we deliver the latest cybersecurity news and insights, engaging with various companies to understand their goals, objectives, and contributions to advancing cybersecurity. In this interview, we spoke with Kamal Shah, Co-founder and CEO of Prophet Security, to explore the company’s mission and discuss how their AI-driven SOC Analyst addresses the evolving […]
Joe Pettit
US Treasury Sanctions Chinese Tech Firm Over Links to State-Sponsored Attacks January 6, 2025
The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned Beijing-based Integrity Technology Group (Integrity Tech) for its involvement in cyber intrusion campaigns targeting US entities. Integrity Tech has been linked to Flax Typhoon, a Chinese state-sponsored cyber group known for targeting critical infrastructure sectors across the US and beyond. The […]
Kirsten Doyle

Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Top 5 Malware Threats to Prepare Against in 2025

Neglected Domains Used in Malspam to Evade SPF and DMARC Security Protections

Leave a Reply Cancel reply

[email protected]

Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Share :

Leave a Reply Cancel reply