Security Affairs

JANUARY 10, 2025

In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures. The malware authors claimed it can steal a broad range of data from compromised systems, including browser data, cryptocurrency wallets, and around 100 browser extensions.

Malware 120

Malware Advertising Antivirus Cybercrime 120

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. “I’m also godfather of his second son.”

Retail 274

Retail Advertising Cryptocurrency Cybercrime 274

Krebs on Security

FEBRUARY 28, 2024

But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems. It didn’t dawn on Doug until days later that the missed meeting with Mr. Lee might have been a malware attack. MacOS computers include X-Protect , Apple’s built-in antivirus technology.

Malware 334

Malware Cryptocurrency Software Phishing 334

Security Affairs

DECEMBER 22, 2024

The man is accused of being a LockBit ransomware developer from 2019 through at least February 2024. Panev and other developers were tasked to create and maintain the malware and infrastructure, while affiliates executed attacks and extorted ransoms, splitting the proceeds. on criminal charges.

Ransomware 120

Ransomware Small Business Antivirus Malware 120

SecureBlitz

SEPTEMBER 3, 2024

Want the best Standard Antivirus deals of September 2024? In today's digital age, protecting your devices from malware, viruses, and other cyber threats is more crucial than ever. To help you […] The post Best Standard Antivirus Deals Of September 2024 appeared first on SecureBlitz Cybersecurity.

Antivirus 97

Antivirus Cyber threats Malware Cybersecurity 97

Tech Republic Security

SEPTEMBER 3, 2024

Bitdefender GravityZone is best overall when it comes to our top choices for protection from malware like viruses, spyware, trojans, and bots.

Antivirus 167

Antivirus Spyware Software Malware 167

Security Affairs

MARCH 26, 2025

New ReaderUpdate malware variants, now written in Crystal, Nim, Rust, and Go, targets macOS users, SentinelOne warns. SentinelOne researchers warn that multiple versions of the ReaderUpdate malware written in Crystal, Nim, Rust, and Go programming languages, are targeting macOS users. The malware maintains persistence via a.plist file.

Malware 71

Malware Adware Antivirus Marketing 71

eSecurity Planet

OCTOBER 29, 2024

An antivirus can offer some security for users worried about stumbling upon malware while browsing the Internet. A good antivirus can detect malware on whatever device the antivirus is scanning. The antivirus industry can feel pretty big, so we’re gonna focus on only two platforms today: Avast and AVG.

Antivirus 57

Antivirus Software Engineering Firewall 57

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches 117

Data breaches Cybercrime Cyber Insurance Marketing 117

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. The Federal Bureau of Investigation (FBI) released a Private Industry Notification (PIN) to warn of HiatusRAT malware campaigns targeting Chinese-branded web cameras and DVRs. ” reads the PIN report.

Architecture 107

Architecture Internet Internet Malware 107

eSecurity Planet

MARCH 3, 2025

Notably, 79% of detections were malware-free a reminder that modern adversaries often bypass traditional antivirus defenses by leveraging innovative, non-malware techniques. The business of cybercrime Cybercriminals are no longer disorganized hackers. Evolving tactics in a digital world: should you care?

Threat Reports 105

Threat Reports Cybercrime Artificial Intelligence Social Engineering 105

Security Affairs

NOVEMBER 6, 2024

” The hospital identified the ransomware attack early Saturday after antivirus software installed on the employees’ PCs flagged potential risks. healthcare providers surged in 2024, with 98 attacks compromising 117 million records. ” reads a post published by the hospital on Facabook.”

Ransomware 126

Ransomware Healthcare Antivirus Data breaches 126

Security Affairs

MARCH 10, 2025

Kaspersky researchers discovered a mass malware campaign spreading SilentCryptoMiner by disguising it as a tool to bypass internet restrictions. While investigating the increased use of Windows Packet Divert ( WPD ) tools by crooks to distribute malware under this pretense, the researchers spotted the campaign.

Cryptocurrency 90

Cryptocurrency Malware Social Engineering Antivirus 90

SecureList

MARCH 10, 2025

We continued to monitor the group throughout the rest of the year, observing intense activity that included updates to SideWinder’s toolset and the creation of a massive new infrastructure to spread malware and control compromised systems. In 2024, we initially observed a significant number of attacks in Djibouti.

Energy and Utilities 116

Energy and Utilities Malware Government Phishing 116

SecureList

SEPTEMBER 3, 2024

Quarterly figures In Q2 2024: Kaspersky solutions blocked over 664 million attacks from various internet sources. The web antivirus reacted to 113.5 The file antivirus blocked over 27 million malicious and unwanted objects. In Q2 2024, the Play group was the most active, publishing data on 12% of all new ransomware victims.

Mobile 114

Mobile Antivirus Adware Ransomware 114

Security Affairs

MAY 25, 2024

Threat actors used fake AV websites masquerading as legitimate antivirus products from Avast, Bitdefender, and Malwarebytes to distribute malware. In mid-April 2024, researchers at Trellix Advanced Research Center team spotted multiple fake AV sites used to distribute info-stealers. exe.zip), malwarebytes.pro (MBSetup.rar).

Malware 138

Malware Antivirus Cryptocurrency Hacking 138

Security Affairs

JANUARY 10, 2025

Between 2019 and 2024, the MirrorFace group launched three cyber campaigns targeting Japanese think tanks, government, academia, and key industries. Campaign A (20192023): Used emails with malware attachments (LODEINFO) to target politicians, media, and government. Track antivirus detections carefully.

Antivirus 76

Antivirus Malware System Administration Technology 76

Security Affairs

JUNE 6, 2025

Recently, actors linked to Play have also exploited a new SimpleHelp vulnerability ( CVE-2024-57727 ) to remotely execute malicious code, expanding their attack methods and reach in 2025. By stealing credentials with Mimikatz and escalating privileges with WinPEAS, they spread malware via Group Policy Objects.

Ransomware 97

Ransomware Encryption Antivirus Malware 97

Security Affairs

SEPTEMBER 13, 2024

Researchers uncovered an Android malware, dubbed Vo1d, that has already infected nearly 1.3 Doctor Web researchers uncovered a malware, tracked as Vo1d , that infected nearly 1.3 In August 2024, several users reported that Dr.Web antivirus detected changes in their TV box system files. and daemonsu.

Malware 140

Malware Firmware Antivirus Manufacturing 140

SecureList

APRIL 23, 2025

We found that the malware was running in the memory of a legitimate SyncHost. Although the exact method by which Cross EX was exploited to deliver malware remains unclear, we believe that the attackers escalated their privileges during the exploitation process as we confirmed the process was executed with high integrity level in most cases.

Malware 143

Malware Software Encryption Internet 143

Zero Day

AUGUST 15, 2024

Malware is a constant threat to your safety and privacy, which means you need to protect your devices. We found the best antivirus software and apps that will help keep you safe and secure.

Antivirus 76

Antivirus Software Malware 76

SecureList

JANUARY 30, 2025

Introduction Since mid-2024, we’ve observed a malicious Android campaign leveraging wedding invitations as a lure to social-engineer victims into installing a malicious Android app (APK), which we have named “Tria Stealer” after unique strings found in campaign samples. Contact me at ‘[link].

Accountability 100

Accountability Malware Banking Phishing 100

SecureList

NOVEMBER 6, 2024

Introduction In August 2024, our team identified a new crimeware bundle, which we named “SteelFox” Delivered via sophisticated execution chains including shellcoding, this threat abuses Windows services and drivers. This report in a nutshell: SteelFox is distributed via forum posts and malicious torrents. SteelFox.*.

Software 124

Software Cryptocurrency Malware DNS 124

Security Affairs

MARCH 31, 2025

CoffeeLoader is a sophisticated malware that uses numerous techniques to bypass security solutions, Zscaler ThreatLabz warns. Zscaler ThreatLabz discovered CoffeeLoader, a malware family active since September 2024, that uses multiple techniques to evade endpoint security while downloading second-stage payloads. exe (0x93).

Malware 80

Malware Encryption Antivirus Marketing 80

Security Affairs

FEBRUARY 28, 2025

In September 2024, Doctor Web researchers uncovered a malware, tracked as Vo1d , that infected nearly 1.3 In August 2024, several users reported that Dr.Web antivirus detected changes in their TV box system files. Researchers at the Chinese cybersecurity firm QiAnXin (QAX) recently discovered 89 new malware samples.

Antivirus 64

Antivirus Firmware Encryption Manufacturing 64

Malwarebytes

JANUARY 16, 2025

This credit card skimmer was active between July 18, 2024, and December 9, 2024. A credit card skimmer is a piece of malware that is injected into a website, often through vulnerabilities in the content management system (CMS) or the plugins that the site owner uses. Enable in-browser protection.

Data breaches 102

Data breaches Antivirus Banking Phishing 102

Security Affairs

MARCH 31, 2025

The campaign has been active since at least November 2024, the PowerShell downloader connects to geo-fenced servers in Russia and Germany to retrieve a ZIP file with the Remcos backdoor. The PowerShell code avoids antivirus detection by using Get-Command to execute the payload. ” reads the Talos report.

Phishing 112

Phishing Antivirus Encryption Hacking 112

The Hacker News

JANUARY 9, 2025

Cybersecurity researchers have uncovered a new, stealthier version of a macOS-focused information-stealing malware called Banshee Stealer.

Encryption 117

Encryption Antivirus Malware Cybersecurity 117

Webroot

MARCH 3, 2025

The growing risks to your data During the third quarter of 2024, data breaches exposed more than 422 million records worldwide. As of 2024, the average cost of a data breach in the United States amounted to $9.36 Antivirus protection Software that protects against viruses and malware.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. “SocGholish” and “LummaC2” are the most frequently observed malware in customer incidents. Our latest investigation revealed the same trend.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

SecureList

MARCH 5, 2025

They started distributing malware under the guise of restriction bypass programs and injecting malicious code into existing programs. The most commonly used malware families were NJRat, XWorm, Phemedrone and DCRat. The original version of the tool is published on GitHub, where it has been starred more than 10,000 times.

Malware 115

Malware Cryptocurrency Antivirus Technology 115

Webroot

MAY 6, 2024

As we navigate through 2024, the cyber threat landscape continues to evolve, bringing new challenges for both businesses and individual consumers. Malware Infections on the Rise For the first time in years, malware infection rates are rising among both businesses and consumers.

Antivirus 126

Antivirus Cyber threats Phishing Education 126

Security Affairs

DECEMBER 7, 2024

Researchers fromthe First Department and the Citizen Lab discovered that the Russian intelligence agency installed the malware on the programmer’s Android device after he was detained for 15 days. These extended capabilities suggest that the malware aims for comprehensive surveillance of the target device.

Spyware 126

Spyware Passwords Encryption Surveillance 126

Security Affairs

MARCH 14, 2025

The dual Russian-Israeli national was arrested in Israel in 2024 and faces charges related to his role in the ransomware operation The man is accused of being a LockBit ransomware developer from 2019 through at least February 2024. Panev received over $230,000 in laundered cryptocurrency from Khoroshev between 2022 and 2024.

Ransomware 64

Ransomware Cryptocurrency Small Business Malware 64

Krebs on Security

APRIL 3, 2024

In January 2024, The Manipulaters pleaded with this author to unpublish previous stories about their work, claiming the group had turned over a new leaf and gone legitimate. 14, 2024, KrebsOnSecurity heard from the same bluebtcus@gmail.com address, apropos of nothing. Why you destroy our lifes? We never harm anyone. Please remove it.”

Phishing 299

Phishing Cybercrime Malware Advertising 299

SecureList

APRIL 7, 2025

Detection In early 2024, while investigating ToddyCat-related incidents, we detected a suspicious file named version.dll in the temp directory on multiple devices. Schematic of DLL proxying However, this is not enough to launch malware. Such software enjoys the trust of monitoring tools and doesn’t raise suspicions.

Software 103

Software Encryption Malware Firmware 103

Security Affairs

MARCH 7, 2025

Medusa ransomware has claimed nearly 400 victims since January 2023, with attacks increasing by 42% between 2023 and 2024. Experts observed a 42% increase in attacks carried out by the group between 2023 and 2024. Experts tracked the Medusa ransomware activity as Spearwing.

Ransomware 63

Ransomware Antivirus Healthcare Encryption 63