Top

Tag: Malware


Cyber-crime, Malware

Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware

November 22, 2022

Via: The Hacker News

A nascent Go-based malware known as Aurora Stealer is being increasingly deployed as part of campaigns designed to steal sensitive information from compromised hosts. “These infection chains leveraged phishing pages impersonating download pages of legitimate software, including cryptocurrency wallets or […]


Threats & Malware, Virus & Malware

Notorious Emotet Malware Returns With High-Volume Malspam Campaign

November 21, 2022

Via: The Hacker News

The notorious Emotet malware has returned with renewed vigor as part of a high-volume malspam campaign designed to drop payloads like IcedID and Bumblebee. “Hundreds of thousands of emails per day” have been sent since early November 2022, enterprise security […]


Cyber-crime, Phishing

Luna Moth callback phishing campaign leverages extortion without malware

November 21, 2022

Via: CSO Online

Palo Alto’s Unit 42 has investigated several incidents linked to the Luna Moth group callback phishing extortion campaign targeting businesses in multiple sectors, including legal and retail. The analysis discovered that the threat actors behind the campaign leverage extortion without […]


Threats & Malware, Virus & Malware

LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities

November 18, 2022

Via: The Hacker News

The LodaRAT malware has resurfaced with new variants that are being deployed in conjunction with other sophisticated malware, such as RedLine Stealer and Neshta. “The ease of access to its source code makes LodaRAT an attractive tool for any threat […]


Cyber-crime, Malware

CERT-UA warns of multiple Somnia ransomware attacks against organizations in Ukraine

November 14, 2022

Via: Security Affairs

The Government Computer Emergency Response Team of Ukraine CERT-UA is investigating multiple attacks against organizations in Ukraine that involved a new piece of ransomware called Somnia. Government experts attribute the attacks to the group ‘From Russia with Love’ (FRwL) (aka […]


Hacker, Threats & Malware

How ransomware gangs and malware campaigns are changing

November 10, 2022

Via: Help Net Security

Deep Instinct released its 2022 Bi-Annual Cyber Threat Report which focuses on the top malware and ransomware trends and tactics from the first half of 2022 and provides key takeaways and predictions for the ever-evolving cybersecurity threat landscape. “2022 has […]


Threats & Malware, Virus & Malware

New Laplas Clipper Malware Targeting Cryptocurrency Users via SmokeLoader

November 8, 2022

Via: The Hacker News

Cryptocurrency users are being targeted with a new clipper malware strain dubbed Laplas by means of another malware known as SmokeLoader. SmokeLoader, which is delivered by means of weaponized documents sent through spear-phishing emails, further acts as a conduit for […]


Mobile, Mobile security

Malicious droppers on Google Play deliver banking malware to victims

November 8, 2022

Via: Help Net Security

Android users are often advised to get mobile apps from Google Play, the company’s official app marketplace, to minimize the possibility of downloading malware. After all, Google analyzes apps before allowing them on the market. Unfortunately, time after time, we […]


Mobile, Mobile security, Threats & Malware, Virus & Malware

Oh, look: More malware in the Google Play store

November 7, 2022

Via: The Register

A quartet of malware-laden Android apps from a single developer have been caught with malicious code more than once, yet the infected apps remain on Google Play and have collectively been downloaded more than one million times. The apps come […]


Cyber-crime, Malware

Researchers Uncover Stealthy Techniques Used by Cranefly Espionage Hackers

October 28, 2022

Via: The Hacker News

A recently discovered hacking group known for targeting employees dealing with corporate transactions has been linked to a new backdoor called Danfuan. This hitherto undocumented malware is delivered via another dropper called Geppei, researchers from Symantec, by Broadcom Software, said […]


Cyber-crime, Malware

Cybercriminals Used Two PoS Malware to Steal Details of Over 167,000 Credit Cards

October 25, 2022

Via: The Hacker News

Two point-of-sale (PoS) malware variants have been put to use by a threat actor to steal information related to more than 167,000 credit cards from payment terminals. According to Singapore-headquartered cybersecurity company Group-IB, the stolen data dumps could net the […]


Cyber-crime, Malware

SideWinder APT Using New WarHawk Backdoor to Target Entities in Pakistan

October 24, 2022

Via: The Hacker News

SideWinder, a prolific nation-state actor mainly known for targeting Pakistan military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) to deliver a tailored malware called WarHawk. “The newly discovered WarHawk backdoor contains various malicious modules […]


Threats & Malware, Virus & Malware, Vulnerabilities

CISA Tells Organizations to Patch Linux Kernel Vulnerability Exploited by Malware

October 21, 2022

Via: Security Week

The vulnerability is tracked as CVE-2021-3493 and it’s related to the OverlayFS file system implementation in the Linux kernel. It allows an unprivileged local user to gain root privileges. CVE-2021-3493 has been exploited in the wild by a stealthy Linux […]


Cyber-crime, Malware

Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware

October 19, 2022

Via: The Hacker News

An advanced persistent threat (APT) group of Chinese origin codenamed DiceyF has been linked to a string of attacks aimed at online casinos in Southeast Asia for years. Russian cybersecurity company Kaspersky said the activity aligns with another set of […]


Cyber-crime, Malware

Chinese ‘Spyder Loader’ Malware Spotted Targeting Organizations in Hong Kong

October 18, 2022

Via: The Hacker News

The China-aligned espionage-focused actor dubbed Winnti has set its sights on government organizations in Hong Kong as part of an ongoing campaign dubbed Operation CuckooBees. Active since at least 2007, Winnti (aka APT41, Barium, Bronze Atlas, and Wicked Panda) is […]


Cyber warfare, Cyber-crime

POLONIUM APT targets Israel with a new custom backdoor dubbed PapaCreep

October 13, 2022

Via: Security Affairs

POLONIUM APT focused only on Israeli targets, it launched attacks against more than a dozen organizations in various industries, including engineering, information technology, law, communications, branding and marketing, media, insurance, and social services. Microsoft MSTIC researchers believe that the attackers […]


Threats & Malware, Virus & Malware

QBot Malware Infects Over 800 Corporate Users in New, Ongoing Campaign

October 12, 2022

Via: Security Week

Also known as Qakbot and Pinkslipbot, QBot is an information stealer with backdoor and self-spreading capabilities that has been around since 2009 and which is often used as the initial infection vector in malicious attacks. Earlier this year, QBot was […]


Network security, Security

Secure web browsers for the enterprise compared: How to pick the right one

October 10, 2022

Via: CSO Online

The web browser has long been the security sinkhole of enterprise infrastructure. While email is often cited as the most common entry point, malware often enters via the browser and is more difficult to prevent. Phishing, drive-by attacks, ransomware, SQL […]


Cyber-crime, Malware

Criminal multitool LilithBot arrives on malware-as-a-service scene

October 10, 2022

Via: The Register

A Russia based threat group that set up a malware distribution shop earlier this year is behind a Swiss Army knife-like botnet that comes with a range of other malicious capabilities, from stealing information to mining cryptocurrency. That’s according to […]


Cyber-crime, Malware

A look at the 2020–2022 ATM/PoS malware landscape

October 6, 2022

Via: Securelist

During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale (PoS) and ATM malware activity, as certain regions saw malicious transactions drop significantly. Now, as we predicted in last year’s […]