Name: DinodasRAT backdoor targets governmental entity in Guyana – Week in Security
Start: 2023-10-09T16:14:00Z
End: 2023-10-09T16:14:02.000Z
Location: BrightTALK

For over 30 years we‘ve helped watch over your progress, protecting it with our digital security solutions. Ours is the story of Progress. Protected. As an IT Security professional you will gain access to analysis and commentary from industry experts on the Cybersecurity front.

Join us for a weekly session to see ESET's latest offerings in an in depth demo of ESET Protect Complete. This software bundle is full of
our secure components such as Vulnerability & Patch Management, Ransomware Remediation and Full Disc Encryption. Following the
demo one of our engineers will join us for a Q&A session.

ESET PROTECT Complete Demo and Q&A

Join us for one of our weekly sessions where we do a deep dive into ESET's latest offerings in security software and services. In today's session we will go over  ESET's MDR service. Following the demo one of our engineers will be joining us to conduct a Q&A for the audience to address any questions or concerns you may have.

ESET MDR Demo and Q&A

October 2025 cyber recap: Windows 10 support ended, TikTok scams spread malware disguised as free software activators, and AI-powered cyberattacks rise from Russia, China, Iran & North Korea.

Stay secure, and catch Tony Anscombe's monthly security roundup for insights.

Month in Security - October 2025

Join Jake Moore, Global Cybersecurity Advisor at ESET, for a thrilling look into the real world applications and vulnerabilities of facial recognition technology. With 14 years in the UK police force specializing in digital forensics and cybercrime, Jake will reveal how real-world criminal tactics intersect with emerging technologies. From smart glasses that identify strangers in real time to deepfake driven identity creation, biometric systems are being manipulated via freely available tools. Attend this can't-miss session to discover the risks, the realities, and the rapidly closing gap between cutting-edge innovation and criminal exploitation.

Persona Hacked: The Rise and Risk of Facial Recognition

Bitcoin ATM scams cost U.S. consumers over $114M in 2023, with losses climbing. Older adults are most at risk. Learn how to stay safe—watch the video now!

Bitcoin ATM scams skyrocket – Week in security

ESET researchers uncovered a phishing campaign, that is leveraging Progressive Web Apps to target Czech bank's clients, bypassing app installation permissions. You can find more details in Tony’s video.

PWA phishing on Android and iOS – Week in security

A Luxembourg-based company lost $60 million in one of the largest-ever business email compromise (BEC) attacks. BEC scams, where #cybercriminals impersonate executives, caused $2.9 billion in losses according to the FBI’s 2023 report.

$60M Business Email Compromise Attacks - Week in Security

Black Hat USA 2024: Cybersecurity experts from around the globe gathered in Las Vegas for this year’s Black Hat conference. Keynotes tackled election integrity and the CrowdStrike outage. 

Watch the video with Tony Anscombe for more insights!

Cyber news from Black Hat 2024 - Week in security

Organizations using AI and automation in security cut breach costs by $2.22M, per IBM's Cost of Data Bread Report 2024 with the average cost being: $4.88M.

AI and automation reduce breach costs – Week in security

New York signs parental control of ‘addictive’ social media feeds into law. Bills signed by Kathy Hochul lets parents restrict children from suggested posts and adds limits on use of minors’ data.

New York law on addictive Social Media - Week in Security

Check out the key trends and developments that defined the cybersecurity landscape for the past 6 months. Discover the ESET Threat Report H1 2024!  From the top cybersecurity trends, and threat categories to bad actor techniques. Watch the video and read the full report!

Key trends shaping the threat landscape in H1 2024 – Week in security

Cyberattacks can have long-term costs. Learn more about legal and financial impacts in Tony’s latest video!

The long-tail costs of a data breach – Week in security

ESET researchers have revealed five campaigns likely orchestrated by the Arid Viper APT group, targeting Android users in Egypt & Palestine, Stay alert!

Arid Viper APT Group targeting Android users - Week in security

Ticketmaster breached! The ShinyHunters hacker group claims to have stolen data on 560M customers, allegedly demanding a $500K ransom. Watch out for security red flags and protect your credentials! Learn more in Tony’s latest video!

560 million Ticketmaster customer data for sale? – Week in Security

Alert! A woman in London was wrongly accused of shoplifting by facial recognition tech, raising serious concerns about false positives. Can they be prevented? Find out in the latest Week in Security!

What happens when facial recognition gets it wrong – Week in security

The UK is reportedly planning mandatory ransomware incident reporting, licenses for ransom payments, and payment bans for critical infrastructure entities. Will these measures deter cybercriminals, or cause delays and increased harm due to licensing procedures? And what about the consequences for cyber-insurance?

Discover the wider implications in the latest #Weekinsecurity with Tony Anscombe!

Mandatory reporting for ransomware attacks? – Week in security

This week, ESET experts released new research on major cyber threats:

1 - The newest APT Activity Report covers sophisticated attacks from October 2023 to March 2024, highlighting targeted countries, industries, and attack methods.
2 -  ESET documented the Ebury malware campaign, compromising hundreds of thousands of servers over 15 years, which were used to commit cryptocurrency theft and other cybercrimes.
3 - ESET discovered two new backdoors, LunarWeb and LunarMail, believed to be used by the Russia-aligned Turla group against a European ministry of foreign affairs and its diplomatic missions abroad.

The who, where, and how of APT attacks – Week in security

News alert: LabHost, a major phishing service platform, has been disrupted in a global operation. 37 suspects have been arrested after a year-long investigation spanning 19 countries and as many as 40,000 phishing domains have been uncovered. In other related news, US law enforcement has pressed charges against the founders of Samourai Wallet for money laundering as part of a federal crackdown on crypto mixers. To find out more, watch the video and stay protected.

Major phishing-as-a-service platform disrupted – Week in security

Facing a ransomware attack, Simone Veil Hospital in Cannes took a stand, refusing to pay LockBit 3.0 gang's demands. But should you pay up? Explore the debate in our video.

The implications of paying ransom demands – Week in security

News alert: LabHost, a major phishing service platform, has been disrupted in a global operation. 37 suspects have been arrested after a year-long investigation spanning 19 countries and as many as 40,000 phishing domains have been uncovered.

In other related news, US law enforcement has pressed charges against the founders of Samourai Wallet for money laundering as part of a federal crackdown on crypto mixers.

To find out more, watch the video and stay protected.

Attention! Tony's latest video sheds light on the alarming consequences of medical data exposure following the Change Healthcare ransomware attack. Learn how to safeguard your sensitive information now.

Protecting yourself after a medical data breach – Week in security

Your messaging app may not be what it seems. ESET's discovery of the eXotic Visit campaign reveals a disturbing trend: Apps posing as messaging services distribute XploitSPY malware, primarily targeting users in Pakistan and India. 

Stay alert and informed.

Inside the eXotic Visit espionage campaign – Week in security

The mystery behind Temu's cash-for-data promotion in this week's Week In Security. Did users truly understand the deal?

The devil is in the fine print – Week in security

Don't let Remote Desktop Protocol be your organization's Achilles' heel! 

Join Tony Anscombe in this edition of #WeekinSecurity as he uncovers smart strategies to keep corporate networks fortified against cyber threats vectoring from misconfigured RDP. 

Stay tuned for expert insights!

Why does RDP remain an issue? – Week in security

ESET researchers reveal a concerning surge in AceCryptor detections, a leading cryptor-as-a-service utilized by cybercriminals to evade detection.  It's now being coupled with the notorious Rescoms RAT, signaling a significant shift in attack strategies. Stay informed and protect your business from these evolving threats.

AceCryptor attacks surge in Europe – Week in security

Over 20% of ransomware attacks on US critical infrastructure in 2023 targeted the healthcare sector, reveals the FBI's 2023 Internet Crime Report. The healthcare industry is under siege. Change Healthcare, a medical firm, recently fell victim to such an attack, causing nationwide prescription chaos and $22 million in paid ransom.

Healthcare still a prime target for cybercrime gangs – Week in security

Cybersecurity Alert! ESET reveals China-aligned Evasive Panda APT group targeting Tibetans via watering hole attacks during Monlam Festival. Stay on guard!

APT attacks taking aim at Tibetans – Week in security

Battling AI trickery! Meta's 'task force' and a recent pact among tech giants like Microsoft, Google, X, and TikTok are fortifying election defenses. Dive into the video for insights on deceptive AI content.

Deceptive AI and 2024 elections - This week in security

Unlock the Truth with Tony Anscombe. #ESET researchers have exposed Operation Texonto – a Russia-aligned PSYOP aimed to demoralize Ukrainians. 

In November and December 2023 waves of false information about heating, medicines, and food shortages were spread. Simultaneously, a spearphishing campaign targeted a Ukrainian defense company and EU agency, aiming to acquire Microsoft Office 365 credentials. 

Connect the dots as PSYOPs and phishing operations are likely converging.

PSYOP campaigns targeting Ukraine – Week in security

Dive into #CyberInsurance with Tony Anscombe! 

Discover the 62% industry surge, driven by new contracts. Organizations must meet strict security standards for coverage. How does vulnerability scanning influence decisions? Find out in this video.

Cyber-insurance and vulnerability scanning – Week in security

Unveiling the Ransomware Surge with Tony Anscombe! 
The shocking $1.1 billion payments of 2023.  Chainalysis calls it a "watershed year for ransomware." ESET Threat Report H2 2023 reveals heightened activity. What's the impact? Watch the full video now!

Ransomware payments spiked in 2023 – Week in security

A Win Against Cybercrime! Watch the latest video with Tony Ansombe about how law enforcement in Brazil, with support from ESET Research, Interpol, Spanish Police, and Caixa Bank was cracked down on the Grandoreiro banking malware. Those involved with this malware were responsible for $120m in losses.

Grandoreiro banking malware disrupted – Week in security

Join Tony Anscombe as we expose Blackwood APT's covert operations.

Discover the sophisticated NSPX30 multistage implant, targeting companies and individuals since 2005. Watch now for a quick overview and explore the attack further on our blogpost on WeLiveSecurity.com.

Blackwood hijacks software updates to deploy NSPX30

Dive into a CISOs' intense world! 

46% may leave cybersecurity due to rising stress levels, legal scrutiny, and personal liability for breaches. Uncover the implications for companies and the security industry. Watch now for essential insights!

Why many CISOs consider quitting – Week in security

Discover the SEC X account hack in our new video. 

A false Bitcoin ETF approval tweet caused market ripples. Despite expectations, it wasn't a breach. Join Tony Anscombe to uncover the hack details, motives, and lessons learned. Watch now for essential insights into this cybersecurity incident.

Lessons from SEC's X account hack – Week in security

As 2024 dawns, it's time to look ahead to the challenges that are set to face people and organizations across the world this year. 

Watch #WeekInSecurity with Tony Anscombe to learn more about #Cybersecurity trends and challenges to watch out for in 2024.

Cybersecurity challenges in 2024 – Week in security

This week, the ESET research team released the H2 2023 issue of its Threat Report which looked at the key trends and developments that defined the threat landscape from June through November of this year.

▶️ Watch hashtag#WeekInSecurity with Tony Anscombe to learn more about key findings.

Key findings from ESET Threat Report H2 2023 – Week in security

A rise of deceptive loan apps on hashtag#Android.

These malicious loan apps request sensitive data from their users and then exfiltrate them to the attackers’ servers. Tony Anscombe explains how this data is then used for blackmail in his new Week in Security video.

Increase of deceptive loan apps – Week in security

Watch the video with Tony Anscombe to learn more about how #deepfakes are taking an ever darker turn and how parents and educators must navigate the challenges of protecting children from harmful AI-generated content.

Teaching appropriate use of AI tech – Week in security

Dive deep into the #WeekInSecurity video with Tony Anscombe! 

Discover the secrets behind #Telekopye, a Telegram bot aiding less tech-savvy scammers. #ESET research team spills the details on the group's onboarding process, and the tricks scammers use to defraud online.

Apply to become a Neanderthal - Week in Security

Australia's DP World, a major port operator, was hit by a cyberattack, forcing ports to shut down for days. 

Ripple effect? 40% of import/export capacity crippled.

Learn more about this #CyberAttack in the latest video with Tony Anscombe.

DP World pulls internet plug - Week in security

The cyberthreat landscape is constantly evolving. To protect your digital life, our products must do the same. Stay tuned for the upcoming ESET consumer offerings.

#ESET #ProgressProtected #DigitalSecurity

Spied on while reading the news - Week in security

"A fascinating case of cyberforensics.“

This is what the ESET researchers call a sudden and mysterious shutdown of the Mozi botnet. One of the world's most notorious #IoT botnets experienced a sudden drop in activity in August, and the news kept coming since then.

Learn more in the latest video with Tony Anscombe.

Mozi Botnet Infects IoT Devices

The Winter Vivern #APT group has been exploiting a zero-day XSS vulnerability in Roundcube Webmail servers to target European governmental entities and a think tank.

Find out more in the video with Tony Anscombe.

Zero-day in Roundcube Webmail – Week in security

This week, Tony Anscombe will tell you about the report that looked at more than a dozen publicly documented malicious campaigns targeting Latin America between 2019 and 2023.
Stay tuned for more.

Spearphishing targets in Latin America – Week in Security

5 new vulnerabilities added to Known Exploited Vulnerabilities Catalog in the US.
The vulnerabilities for which patches are available affect Adobe Acrobat and Reader. One can be misused to achieve remote code execution with the current user's privileges.

You will find this and more news from the cybersecurity world in this video with Tony Anscombe.

Staying on top of security updates – Week in Security

ESET researchers unveiled their findings about an attack by the North Korea-linked #APT group #Lazarus that took aim at an aerospace company in Spain.

Find out more in a #WeekinSecurity video with Tony Anscombe.

Lazarus Attack Spanish Aerospace Company

The speakers at this year's edition of #LABScon featured two #ESET malware researchers who took to the stage to deconstruct sophisticated attacks conducted by two well-known APT groups.

Tony Anscombe summarized the highlights from the conference in his latest #WeekinSecurity video.

Oil Rig and Stealth Falcon

The United States' Federal Trade Commission (FTC) has sent a letter to OpenAI, the company behind ChatGPT, asking for answers on how it addresses the risk to people's reputations. The concerns are that responses generated by the service about people could be misleading or harmful, as well as that personal information could form part of the response to a prompt. 
 
What are the takeaways for you as a ChatGPT user? Find out in Tony’s video.

What happens if AI is wrong? – Week in security with Tony Anscombe

Bills granting access to end-to-end encrypted systems, opportunity for cybercriminals, abuse by authority, human rights, and tech companies leaving the UK? This and more in the latest #WeekInSecurity with Tony Anscombe.

Is backdoor access oppressive? – Week in security with Tony Anscombe

When you invest in a company, do you check its cybersecurity? The U.S. Securities and Exchange Commission has adopted new cybersecurity rules, which give investors access to information about the company's cybersecurity. Watch #WeekInSecurity with Tony Anscombe to learn more.

Check cybersecurity pre-invest – Week in security with Tony Anscombe

Black Hat 2023, one of the annual gatherings of cybersecurity professionals from around the world had two stand-out topics - Artificial Intelligence and Cyberespionage in Belarus, conducted by APT group MoustachedBouncer. Watch #WeekInSecurity with Tony Anscombe to learn more.

20k security folks in the desert – Week in security with Tony Anscombe

In the latest Week in Security video, Tony Anscombe will walk you through the updates from the #DEFCON conference.
Why has there been an evacuation of 30 000 hackers? Find the answer in the video.

Evacuation of 30 000 hackers – Week in security with Tony Anscombe

Week in security with Tony Anscombe

Recently, a #cyberespionage campaign named by ESET as Operation #Jacana deployed a previously undocumented backdoor called #DinodasRAT against a Guyanese governmental entity.

The backdoor can exfiltrate files, manipulate #Windows registry keys, and execute commands capable of performing various actions on a victim’s machine.

Learn more about the campaign and China-aligned operators in the latest video with Tony Anscombe.

DinodasRAT backdoor targets governmental entity in Guyana – Week in Security

cybersecurity

Information Security

Cyber Attacks

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

In today’s economic climate, successful small businesses need to overcome an array of challenges. Client dependence, legal issues, small business financing… as an entrepreneur, where can you find the information you need to help inform your decisions? In the small business management community, discover how you can create a successful small business from the business plan up!

Small Business

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

DinodasRAT backdoor targets governmental entity in Guyana – Week in Security

Presented by

About this talk

ESET - Threat Research & Security Trends