Security Affairs

NOVEMBER 3, 2022

It focused on deploying POS malware and launching targeted spear-phishing attacks against organizations worldwide. In order to weaken the security defenses installed on the target machine, Black Basta targets installed security solutions with specific batch scripts downloaded into the Windows directory. bat WindowsILUg69ql2.bat

Cybercrime 95

Cybercrime Ransomware Antivirus Malware 95

Security Affairs

AUGUST 21, 2022

A new Grandoreiro banking malware campaign is targeting organizations in Mexico and Spain, Zscaler reported. Zscaler ThreatLabz researchers observed a Grandoreiro banking malware campaign targeting organizations in the Spanish-speaking nations of Mexico and Spain. ” reads the post published by Zscaler. Pierluigi Paganini.

Banking 91

Banking Malware Antivirus Phishing 91

SC Magazine

JUNE 18, 2021

Security teams looking to prevent work-from-home and remote users from downloading potentially trojanized pirated software will find Thursday’s research by Sophos of interest. The malware also sends the name of the pirated software that the user was hoping to obtain to a website that delivers a secondary payload.

Software 91

Software Malware Antivirus CISO 91

Krebs on Security

JANUARY 27, 2021

and Bulgarian authorities this week seized the darkweb site used by the NetWalker ransomware cybercrime group to publish data stolen from its victims. The following advertisement (translated into English by cybersecurity firm Intel 471 ) was posted by the NetWalker affiliate program manager last year to a top cybercrime forum.

Ransomware 282

Ransomware Cybercrime Antivirus Encryption 282

Krebs on Security

APRIL 3, 2024

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called “ The Manipulaters ,” a sprawling web hosting network of phishing and spam delivery platforms. ” A number of questions, indeed. ” A number of questions, indeed. Image: DomainTools.

Phishing 221

Phishing Cybercrime Malware Advertising 221

Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. Recently security experts from Sucuri, spotted JavaScript injections targeting WordPress sites to display fake DDoS Protection pages which lead victims to download remote access trojan malware. Pierluigi Paganini.

DDOS 91

DDOS Malware Antivirus Firewall 91

Security Affairs

AUGUST 31, 2022

A malware campaign tracked as GO#WEBBFUSCATOR used an image taken from NASA’s James Webb Space Telescope (JWST) as a lure. Securonix Threat researchers uncovered a persistent Golang-based malware campaign tracked as GO#WEBBFUSCATOR that leveraged the deep field image taken from the James Webb telescope. Pierluigi Paganini.

Malware 82

Malware DNS Antivirus Encryption 82

Krebs on Security

MARCH 28, 2021

New data suggests someone has compromised more than 21,000 Microsoft Exchange Server email systems worldwide and infected them with malware that invokes both KrebsOnSecurity and Yours Truly by name. “web shells”) that various cybercrime groups worldwide have been using to commandeer any unpatched Exchange servers.

Hacking 352

Hacking Cybercrime DNS Antivirus 352

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. “The 911[.]re Image: University of Sherbrooke.

VPN 304

VPN Computers and Electronics Antivirus Software 304

Security Affairs

JUNE 16, 2022

Researchers at antivirus firm Dr. Web discovered malware in the Google Play Store that was downloaded two million times. An investigation conducted by the antivirus firm Dr. Web in May resulted in the discovery of multiple adware and information-stealing malware on the official Google Play Store. The Android.Spy.4498

Adware 86

Adware Antivirus Malware Software 86

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 87

Malware Banking Healthcare Penetration Testing 87

Security Affairs

NOVEMBER 26, 2021

Morphisec researchers spread cryptocurrency malware dubbed Babadeda in attacks aimed at crypto and NFT communities. Morphisec researchers spotted a new crypto-malware strain, tracked as Babadeda, targeting cryptocurrency, non-fungible token (NFT), and DeFi passionates through Discord channels. ” concludes the report.

Cryptocurrency 123

Cryptocurrency Malware Antivirus Phishing 123

Security Affairs

MAY 19, 2023

The Lemon Group cybercrime ring has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. A cybercrime group tracked has Lemon Group has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. 231 banking malware. ” continues the report.

Mobile 86

Mobile Advertising Malware Cybercrime 86

Security Affairs

MARCH 24, 2020

ch launched the MalwareBazaar service, a malware repository to allow experts to share known malware samples and related info. ch launched a malware repository, called MalwareBazaar , to allow experts to share known malware samples and related analysis. Malware batches are available for download on a daily base.

Malware 53

Malware Adware Cyber threats Advertising 53

Security Affairs

DECEMBER 26, 2022

Cybersecurity researchers exposed new evasion techniques adopted by an advanced malware downloader called GuLoader. CrowdStrike researchers d a detailed multiple evasion techniques implemented by an advanced malware downloader called GuLoader (aka CloudEyE ). ” reads the analysis published by CrowdStrike.

Malware 95

Malware Antivirus Hacking Cybersecurity 95

Security Affairs

SEPTEMBER 22, 2020

US Cybersecurity and Infrastructure Security Agency (CISA) is warning of a notable increase in the use of LokiBot malware by threat actors since July 2020. The Agency’s EINSTEIN Intrusion Detection System has detected persistent malicious activity associated with the LokiBot malware. ” reads the CISA’s advisory. .”

Malware 66

Malware Passwords Advertising Antivirus 66

Security Affairs

FEBRUARY 28, 2023

Antivirus company Bitdefender has released a free decryptor for the recently discovered ransomware family MortalKombat. Good news for the victims of the recently discovered MortalKombat ransomware , the antivirus firm Bitdefender has released a free decryptor that will allow them to recover their file without paying the ransom.

Ransomware 89

Ransomware Antivirus Backups Malware 89

Identity IQ

AUGUST 19, 2023

The global cost of cybercrime reached an astounding $8.44 1 Use Anti-Virus and Anti-Malware Software When you use the internet, your computer can become a target for harmful programs. These programs, known as malware , can hurt your computer, take your personal info, and even lock your files until you pay a ransom.

Internet 93

Internet Internet Password Management Passwords 93

Security Boulevard

JANUARY 30, 2023

1 ) Cybercriminals also seem to see the potential in ChatGPT; some security researchers reported seeing evidence that cybercriminals are abusing the tool to create or improve malware or create offensive tools to support cybercrime. ( In other fields, ChatGPT is being met with some concern.

Malware 126

Malware Ransomware Advertising Technology 126

Security Affairs

APRIL 29, 2023

A new variant of the information-stealing malware ViperSoftX implements sophisticated techniques to avoid detection. Trend Micro researchers observed a new ViperSoftX malware campaign that unlike previous attacks relies on DLL sideloading for its arrival and execution technique. c2 arrowlchat[.]com ” continues the report.

Encryption 86

Encryption Malware Cryptocurrency Software 86

Security Affairs

APRIL 9, 2022

Experts discovered malicious Android apps on the Google Play Store masqueraded as antivirus solutions spreading the SharkBot Trojan. The banking Trojan uses Domain Generation Algorithm (DGA), which is rarely used by Android malware. This is the exact case we observed with the Sharkbot malware.”

Banking 87

Banking Antivirus Malware Accountability 87

Security Affairs

DECEMBER 9, 2021

“Luckily, these packages were removed before they could rack up a large number of downloads (based on npm records) so we managed to avoid a scenario similar to our last PyPI disclosure, where the malicious packages were downloaded tens of thousands of times before they were detected and removed.”

Antivirus 88

Antivirus Malware Accountability Firewall 88

Security Affairs

JANUARY 6, 2023

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware , which can allow victims of the group to restore their data for free. The group typically asked ransoms between $20,000 to $5.8

Ransomware 95

Ransomware Antivirus Encryption Backups 95

CyberSecurity Insiders

JUNE 13, 2023

Stay informed about the latest cyber threats, such as phishing, malware, ransomware, and social engineering attacks. Be cautious when clicking on links or downloading attachments, especially from unfamiliar or suspicious sources. Employ Security Software: Install reputable antivirus and anti-malware software on all your devices.

Cybersecurity 93

Cybersecurity Education Cyber threats Passwords 93

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey.

Phishing 82

Phishing Social Engineering Malware Advertising 82

BH Consulting

AUGUST 16, 2023

Shedding the light of the law on cybercrime methods Today’s cybercrime landscape involves criminals operating across borders as business-like syndicates, says Europol. The agency’s ninth Internet Organised Crime Assessment (IOCTA) 2023 report gives a law enforcement perspective on current cybercrime techniques.

Social Engineering 52

Social Engineering Cybercrime Data privacy Engineering 52

Security Affairs

DECEMBER 26, 2022

Cybersecurity researchers exposed new evasion techniques adopted by an advanced malware downloader called GuLoader. CrowdStrike researchers d a detailed multiple evasion techniques implemented by an advanced malware downloader called GuLoader (aka CloudEyE ). ” reads the analysis published by CrowdStrike.

Malware 52

Malware Antivirus Hacking Cybersecurity 52

Security Affairs

OCTOBER 13, 2022

Having infected the victim, attackers download and run malicious payloads on their device, as well as get hold of the keys to their account on the official WhatsApp app.” The experts also discovered the adv for software development kit (SDK) that included the downloader for the malicious payload. ” reported Kaspersky.

Mobile 107

Mobile Accountability Advertising Antivirus 107

Security Affairs

MARCH 14, 2022

An HTML file downloads a.lnk file mascaraed of an MSI file that takes advantage of the LoL bins to execute an MSI file (segunda.msi). segunda.msi” downloads and executes an EXE file that will drop the final stage. The URL available on the email templates downloads an HTML file called “ Dividas 2021.html Phishing wave.

Banking 86

Banking Encryption Malware Phishing 86

Security Affairs

MARCH 10, 2020

Microsoft is warning of human-operated ransomware, this kind of attack against businesses is becoming popular in the cybercrime ecosystem. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. ” reads the post published by Microsoft.

Ransomware 115

Ransomware Cybercrime Social Engineering Banking 115

IT Security Guru

FEBRUARY 13, 2023

With so many well known banking sites falling short when it comes to blocking fraudsters, cybersecurity experts at VPNOverview have compiled a list of 12 safety tips to keep your money safe from malware and phishing scams. What are the possible dangers of online banking? Do not download any files they may contain. 7.

Banking 63

Banking Cybersecurity Antivirus Phishing 63

Security Affairs

MARCH 20, 2023

Upon providing the CAPTCHA, the victim will be asked to download a ZIP archive containing the Redline Trojan variant. This is not noticeable by the victim during the download, as the file is compressed and most of that artificial size has just been filled with zeros.” ” reads the anaysis published by Avast.

Antivirus 74

Antivirus Malware Engineering Hacking 74

Security Affairs

JUNE 12, 2019

FireEye documented obfuscation techniques used by the group in June 2017 and the involvement of PUNCHTRACK POS-scraping malware. The ShellTea backdoor was analyzed by researchers Root9b in June 2017, the malware was used by threat actors to deliver the PoC malware. ” reads the analysis published by Morphisec.

Hacking 78

Hacking Malware Advertising Retail 78

Security Affairs

SEPTEMBER 5, 2022

Experts spotted an upgraded version of the SharkBot malware that was uploaded to the official Google Play Store. While previous variants of the dropper relied on Accessibility permissions to automatically install the Sharkbot malware, this new one asks the victim to install the malware as a fake update for the antivirus.

Banking 91

Banking Malware Mobile Accountability 91

Security Affairs

NOVEMBER 18, 2021

The detection of which app is being opened, is now done server side, and the malware regularly sends on-screen content to the C2. Credential grabbing is then activated from the C2 server, and not by an automatic command from the malware.” ” states the analysis published by IBM.

Banking 90

Banking Malware Antivirus Phishing 90

SecureWorld News

JANUARY 28, 2021

This is a unique and new approach to effectively disrupt the activities of the facilitators of cybercrime.". EMOTET gained notoriety for being one of the most professional and longest lasting cybercrime services to exist. Europol also stresses that EMOTET was so much more than just malware. EMOTET's history and effectiveness.

Cybercrime 52

Cybercrime Malware Antivirus Banking 52

Security Affairs

MARCH 26, 2019

Malware researchers at Cybaze-Yoroi ZLab team uncovered a new Ursnif malware campaign that reached several organizations across Italy. The Ursnif trojan confirms itself as one of the most active malware threats in cyberspace, even during the past days, when new attack attempts reached several organizations across Italy.

Malware 85

Malware Antivirus Advertising Encryption 85