Top

Category: Malware


Cyber-crime, Malware

Anatsa Android banking Trojan expands to Slovakia, Slovenia, and Czechia

February 19, 2024

Via: Security Affairs

In November 2023, researchers from ThreatFabric observed a resurgence of the Anatsa banking Trojan, aka TeaBot and Toddler. Between November and February, the experts observed five distinct waves of attacks, each focusing on different regions. The malware previously focused its […]


Cyber-crime, Malware

Miscreants turn to ad tech to measure malware metrics

February 15, 2024

Via: The Register

Cyber baddies have turned to ad networks to measure malware deployment and to avoid detection, according to HP Wolf Security. The security group’s Q4 2024 Threat Insights Report finds criminals have adopted ad tech tools to make their social engineering […]


Cyber-crime, Malware

Bumblebee malware wakes from hibernation, forgets what year it is, attacks with macros

February 14, 2024

Via: The Register

The Bumblebee malware loader seemingly vanished from the internet last October, but it’s back and – oddly – relying on a vintage vector to try and gain access. First spotted in 2022 by researchers at Proofpoint – who identified it […]


Cyber-crime, Malware

Crooks hook hundreds of exec accounts after phishing in Azure C-suite pond

February 13, 2024

Via: The Register

The number of senior business executives stymied by an ongoing phishing campaign continues to rise with cybercriminals registering hundreds of cloud account takeovers (ATOs) since spinning it up in November. Researchers from Proofpoint listed many C-suite roles as prime targets […]


Cyber-crime, Malware

Iran’s cyber operations in Israel a potential prelude to US election interference

February 7, 2024

Via: The Register

Iran’s anti-Israel cyber operations are providing a window into the techniques the country may deploy in the run-up to the 2024 US Presidential elections, Microsoft says. An analysis of Iran’s activity, published by Microsoft Threat Analysis Center (MTAC) today, concluded […]


Cyber-crime, Malware

U.S. Implements Visa Ban to Counter Spyware Proliferation

February 7, 2024

Via: SecureWorld

The U.S. State Department announced Monday a new policy to impose visa restrictions on individuals linked to the misuse of commercial spyware tools that enable unlawful surveillance and human rights abuses globally. “The misuse of commercial spyware threatens privacy and […]


Cyber-crime, Malware

EquiLend back in the saddle as ransom payment rumors swirl

February 6, 2024

Via: The Register

Global securities finance tech company EquiLend’s systems are now back online after announcing a disruptive ransomware attack nearly two weeks ago. EquiLend was founded in 2001 by some of Wall Street’s biggest players – its board of directors includes BlackRock, […]


Cyber-crime, Malware

Chinese Coathanger malware hung out to dry by Dutch defense department

February 6, 2024

Via: The Register

Dutch authorities are lifting the curtain on an attempted cyberattack last year at its Ministry of Defense (MoD), blaming Chinese state-sponsored attackers for the espionage-focused intrusion. Specialists from the Netherlands’ Military Intelligence and Security Service (MIVD) and the General Intelligence […]


Cyber-crime, Malware

LockBit shows no remorse for ransomware attack on children’s hospital

February 1, 2024

Via: The Register

Ransomware gang LockBit is claiming responsibility for an attack on a Chicago children’s hospital in an apparent deviation from its previous policy of not targeting nonprofits. Stooping to new lows, the criminals are reportedly unwilling to reverse the attack on […]


Cyber-crime, Malware

VPN users beware — security flaws are being exploited to spread dangerous malware

January 31, 2024

Via: TechRadar

Users of Ivanti’s Connect Secure (ICS) virtual private network (VPN) devices beware – the solutions carry two high severity vulnerabilities that are being chained together to deliver the Silver malware. First things first – the two vulnerabilities being abused here […]


Cyber-crime, Malware

Crooks stole around $112 million worth of XRP from Ripple’s co-founder

January 31, 2024

Via: Security Affairs

This week, crooks stole around $112 million worth of the Ripple-focused cryptocurrency XRP from a crypto wallet belonging to the Ripple’s co-founder and executive chairman Chris Larsen. Larsen pointed out that the hackers compromised his personal XRP accounts, while the […]


Cyber-crime, Malware

Cactus ransomware gang claims the Schneider Electric hack

January 30, 2024

Via: Security Affairs

Schneider Electric is a multinational company that specializes in energy management, industrial automation, and digital transformation. BleepingComputer first reported the attack that hit the Sustainability Business division of the company on January 17th. BleepingComputer contacted Schneider Electric which confirmed the […]


Cyber-crime, Malware

Fake Google ads are trying to trick users into downloading nasty malware — here’s how you can fight back

January 29, 2024

Via: TechRadar

Consumers in China looking to access banned communications apps such as Telegram are being targeted by threat actors looking to deploy various malware. This is according to a new report from Malwarebytes’ Jérôme Segura, who found unnamed hackers have been […]


Cyber-crime, Malware

Blackwood APT delivers malware by hijacking legitimate software update requests

January 25, 2024

Via: Help Net Security

ESET researchers have discovered NSPX30, a sophisticated implant used by a new China-aligned APT group, which they dubbed Blackwood. Blackwood has carried out cyberespionage operations against individuals and companies from China, Japan, and the United Kingdom. It leverages adversary-in-the-middle techniques […]


Cyber-crime, Malware

UK water giant admits attackers broke into system as gang holds it to ransom

January 23, 2024

Via: The Register

Southern Water confirmed this morning that criminals broke into its IT systems, making off with a “limited amount of data.” The Black Basta ransomware group claimed the attack while publishing a snippet of the data it allegedly stole, which included: […]


Cyber-crime, Malware

Subway’s data torpedoed by LockBit, ransomware gang claims

January 22, 2024

Via: The Register

The LockBit ransomware gang is claiming an attack on submarine sandwich slinger Subway, alleging it has made off with a platter of data. LockBit’s post to its leak blog, published on January 21, suggests one of its affiliates breached Subway’s […]


Cyber-crime, Malware

Google TAG: Kremlin cyber spies move into malware with a custom backdoor

January 18, 2024

Via: The Register

Russian cyberspies linked to the Kremlin’s Federal Security Service (FSB) are moving beyond their usual credential phishing antics and have developed a custom backdoor that they started delivering via email as far back as November 2022, according to Google’s Threat […]


Cyber-crime, Malware

Ransomware attacks hospitalizing security pros, as one admits suicidal feelings

January 18, 2024

Via: The Register

Ransomware attacks are being linked to a litany of psychological and physical illnesses reported by infosec professionals, and in some cases blamed for hospitalizations. A cybersecurity worker in the financial services industry, for example, pinned the stress of remediating ransomware […]


Cyber-crime, Malware

Combination of cheap .cloud domains and fake Shark Tank news fuel unhealthy wellness scams

January 17, 2024

Via: The Register

Scammers are buying up cheap domain names to host sites that sell dodgy health products using fake articles, according to cybercrime disruption outfit Netcraft. The firm on Tuesday noted that purveyors of legal-but-dubious health products often run fake news campaigns […]


Cyber-crime, Malware

Infoseccers think attackers backed by China are behind Ivanti zero-day exploits

January 11, 2024

Via: The Register

Security experts believe Chinese nation-state attackers are actively exploiting two zero-day vulnerabilities in security products made by Ivanti. If you’re an admin or a user of the two products affected, VPN service Ivanti Connect Secure (ICS) and network access control […]