Security Affairs

APRIL 13, 2024

Researchers warn threat actors are manipulating GitHub search results to target developers with persistent malware. Checkmarx researchers reported that t hreat actors are manipulating GitHub search results to deliver persistent malware to developers systems. Merely checking for known vulnerabilities is insufficient.

Malware 125

Malware Cryptocurrency Encryption Hacking 125

Tech Republic Security

APRIL 18, 2024

Nearly 10 million devices were infected with data-stealing malware in 2023, with criminals stealing an average of 50.9 credentials per device.

Malware 185

Malware Big data Data breaches Ransomware 185

SecureList

MARCH 20, 2024

Introduction Malware for mobile devices is something we come across very often. million malware, adware, and riskware attacks on mobile devices. Last month, we wrote a total of four private crimeware reports on Android malware, three of which are summarized below. In 2023 , our technologies blocked 33.8 and sends it to the C2.

Malware 86

Malware Mobile Firmware Spyware 86

Tech Republic Security

JANUARY 18, 2024

The Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA's tips for protecting against this malware threat.

Malware 179

Malware Cybersecurity 179

Security Affairs

APRIL 15, 2024

The Ukrainian hacking group Blackjack used a destructive ICS malware dubbed Fuxnet in attacks against Russian infrastructure. Team82 and Claroty have been unable to verify the attackers’ claims, however, they conducted a detailed analysis of the Fuxnet malware relying on information provided by the attackers.

Malware 132

Malware Firmware IoT Hacking 132

Bleeping Computer

APRIL 23, 2024

North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner malware. [.]

Antivirus 121

Antivirus Malware Cryptocurrency 121

Penetration Testing

APRIL 18, 2024

Kaspersky Labs researchers have revealed a new, targeted malware campaign dubbed “DuneQuixote” with a focus on government entities within the Middle East.

Penetration Testing 110

Penetration Testing Malware Government 110

Security Affairs

APRIL 12, 2024

Proofpoint researchers observed a threat actor, tracked as TA547, targeting German organizations with an email campaign delivering the Rhadamanthys malware. The security firm pointed out that this is the first TA547 group to use this malware family. The experts also discovered the attempts of using LLM in malware campaigns.

Malware 113

Malware Social Engineering Retail Engineering 113

Penetration Testing

APRIL 18, 2024

A detailed analysis by Sucuri, a leading website security firm, has uncovered a sophisticated malware campaign that has shifted strategies to become more elusive and harder to detect.

Penetration Testing 106

Penetration Testing Malware 106

Bleeping Computer

APRIL 20, 2024

A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with a Microsoft repository, making the files appear trustworthy.

Malware 142

Malware 142

Security Affairs

APRIL 24, 2024

A malware campaign has been exploiting the updating mechanism of the eScan antivirus to distribute backdoors and cryptocurrency miners. Avast researchers discovered and analyzed a malware campaign that exploited the update mechanism of the eScan antivirus to distribute backdoors and crypto miners.

Antivirus 110

Antivirus Malware DNS Cryptocurrency 110

Tech Republic Security

SEPTEMBER 26, 2023

Malware is an insidious infection that will steal productivity from your enterprise and potentially wreak havoc on your network. To prevent and counteract malware, it’s important to know the terminology surrounding it.

Malware 138

Malware Technology 138

Penetration Testing

APRIL 16, 2024

According to a detailed report by Recorded Future’s Insikt Group, the cybersecurity landscape faces a formidable threat in the form of “Mobile NotPetya,” a potential zero-click, wormable mobile malware that could spread autonomously and... The post Unstoppable Malware?

Mobile 110

Mobile Penetration Testing Malware Risk 110

The Hacker News

APRIL 26, 2024

Fake browser updates are being used to push a previously undocumented Android malware called Brokewell. Brokewell is a typical modern banking malware equipped with both data-stealing and remote-control capabilities built into the malware," Dutch security firm ThreatFabric said in an analysis published Thursday.

Malware 77

Malware Banking 77

Bleeping Computer

APRIL 11, 2024

Cybersecurity and Infrastructure Security Agency (CISA) has released a new version of "Malware Next-Gen," now allowing the public to submit malware samples for analysis by CISA. [.]

Malware 127

Malware Cybersecurity Government 127

Bleeping Computer

APRIL 22, 2024

BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in a similar fashion. [.]

Malware 130

Malware 130

Penetration Testing

APRIL 14, 2024

A sophisticated malware campaign targeting the widely-used Notepad++ text editor has been uncovered by security researchers at AhnLab Security Emergency Response Center (ASEC).

Penetration Testing 111

Penetration Testing Malware 111

Security Boulevard

APRIL 10, 2024

Raspberry Robin, the highly adaptable and evasive worm and malware loader that first appeared on the cyberthreat scene in 2021, is now using a new method for spreading its malicious code. The post Raspberry Robin Malware Now Using Windows Script Files to Spread appeared first on Security Boulevard.

Malware 122

Malware Cybersecurity Network Security 122

Security Boulevard

MARCH 19, 2024

The term malware, is a contraction of "malicious software," and refers to any software intentionally designed to cause damage to a computer, server, client, or computer network. The post Malware appeared first on Seceon. The post Malware appeared first on Security Boulevard.

Malware 62

Malware Software Cybersecurity 62

Penetration Testing

APRIL 9, 2024

The attackers used a malware strain... The post LazyStealer Malware Targets Governments with Simple But Effective Strategy appeared first on Penetration Testing.

Government 113

Government Penetration Testing Malware Technology 113

Penetration Testing

MARCH 28, 2024

Security researchers at Kaspersky Labs have uncovered a dangerous new variant of the DinodasRAT malware that targets Linux operating systems.

Penetration Testing 144

Penetration Testing Malware 144

Penetration Testing

MARCH 23, 2024

Indetectables Toolkit This tool compilation is carefully crafted to be useful both for beginners and veterans of the malware analysis world.

Penetration Testing 145

Penetration Testing Malware Engineering 145

Security Boulevard

APRIL 8, 2024

The post 10 Million Devices Were Infected by Data-Stealing Malware in 2023 appeared first on Security Boulevard. Cybercriminals pilfered an average of 50.9 login credentials per device, evidence of the pressing need for cybersecurity measures.

Malware 141

Malware Cybersecurity Social Engineering Engineering 141

Penetration Testing

APRIL 4, 2024

Researchers at FortiGuard Labs have uncovered the inner workings of Byakugan, a versatile malware strain employing a mix of legitimate and malicious components to steal sensitive user data while flying under the radar.

Penetration Testing 119

Penetration Testing Malware 119

Quick Heal Antivirus

MARCH 21, 2024

Lately, we’ve spotted sneaky malware on Android. The post Beware: Malicious Android Malware Disguised as Government Alerts. In our high-tech world, sneaky cyber threats can pop up anywhere. appeared first on Quick Heal Blog.

Government 115

Government Malware Cyber threats Social Engineering 115

Bleeping Computer

APRIL 18, 2024

A new info-stealing malware linked to Redline poses as a game cheat called 'Cheat Lab,' promising downloaders a free copy if they convince their friends to install it too. [.]

Malware 107

Malware 107

Penetration Testing

APRIL 21, 2024

TransparentTribe, also known under aliases such as APT 36, ProjectM, and Mythic Leopard, is one... The post Fake Sites, Custom Malware: TransparentTribe’s Deception Exposed appeared first on Penetration Testing.

Penetration Testing 94

Penetration Testing Malware 94

Penetration Testing

MARCH 13, 2024

Recently, researchers at the Zero Day Initiative (ZDI) have dissected a complex DarkGate malware campaign targeting users through a zero-day flaw in Microsoft Windows SmartScreen (CVE-2024-21412).

Penetration Testing 140

Penetration Testing Malware 140

Bleeping Computer

APRIL 17, 2024

A new Android banking malware named 'SoumniBot' is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure. [.]

Malware 108

Malware Banking Mobile 108

Penetration Testing

FEBRUARY 28, 2024

Enter GULoader, a malware favored by cybercriminals for its stealth, adaptability, and ability to... The post SVG Attacks: How GULoader Malware Sneaks into Your Network appeared first on Penetration Testing.

Penetration Testing 134

Penetration Testing Malware Cybersecurity 134

Bleeping Computer

MARCH 5, 2024

A new malware dubbed 'WogRAT' targets both Windows and Linux in attacks abusing an online notepad platform named 'aNotepad' as a covert channel for storing and retrieving malicious code. [.]

Malware 101

Malware 101

Bleeping Computer

APRIL 25, 2024

Researchers have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses. [.]

Malware 95

Malware 95

Tech Republic Security

FEBRUARY 15, 2024

Using a guide and pre-formatted malware response checklist, written by Erik Eckel.

Malware 142

Malware Social Engineering Engineering Software 142

Tech Republic Security

MARCH 29, 2023

The post Nexus Android malware targets 450 financial applications appeared first on TechRepublic. Learn how to protect your organization and users from this Android banking trojan.

Malware 209

Malware Banking Mobile Cybersecurity 209

Security Affairs

DECEMBER 26, 2023

Researchers at NCC Group reported that in November they observed the return of the infamous banking malware Carbanak in ransomware attacks. The cybersecurity firm NCC Group reported that in November the banking malware Carbanak was observed in ransomware attacks. ” reads the report published by NCC Group.

Malware 122

Malware Ransomware Banking Healthcare 122

The Hacker News

MARCH 20, 2024

Cybersecurity researchers have discovered an updated variant of a stealer and malware loader called BunnyLoader that modularizes its various functions as well as allow it to evade detection.

Malware 118

Malware Cryptocurrency Cybersecurity 118

Penetration Testing

MARCH 24, 2024

Cybersecurity experts at SentinelLabs have discovered a dangerous new version of the infamous “AcidRain” malware. This type of malware, known as a wiper, is designed to destroy data and cripple systems.

Malware 101

Malware Penetration Testing Cybersecurity 101