Security Affairs

DECEMBER 22, 2024

He developed the code to disable antivirus software, deploy malware, and print ransom notes to all printers connected to a victim network. A $10 million reward was offered for information on Khoroshev through the U.S. reward for information leading to his arrest. State Departments TOC Rewards Program via the FBI tip website.

Ransomware

Security Affairs

MAY 24, 2025

“The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims.”

Social Engineering

Security Affairs

APRIL 22, 2025

. “There has been a sharp increase in the number of cases of unauthorized access and unauthorized trading (trading by third parties) on Internet trading services using stolen customer information (login IDs, passwords, etc.) Keeping devices updated and using reliable antivirus software also helps prevent malware-related data theft.

Financial Services

Security Affairs

APRIL 2, 2025

Delivered via phishing and hosted on compromised SharePoint sites, it remains undetected by most antivirus solutions, posing a serious security risk. Despite its mild obfuscation, it remains fully undetected (FUD) by most antivirus solutions. It executes shell commands and system operations while using obfuscation to evade detection.

Antivirus

Security Affairs

JANUARY 10, 2025

Experts found a new version of the Banshee macOS information stealer which was enhanced with new evasion mechanisms. A version discovered by Check Point in September relied on Apple’s XProtect encryption algorithm for obfuscation, allowing it to evade antivirus detection until its source code leak in November.

Malware

eSecurity Planet

OCTOBER 29, 2024

An antivirus can offer some security for users worried about stumbling upon malware while browsing the Internet. A good antivirus can detect malware on whatever device the antivirus is scanning. A lot of what an antivirus gives users is peace of mind and a feeling of safety when using their computer.

Antivirus

Webroot

FEBRUARY 21, 2025

What began as antivirus product has expanded into a comprehensive portfolio to secure your entire digital life. Introducing Webroot Total Protection: Comprehensive security for the modern world When you think about cybersecurity, you probably think of antivirus protectionand rightly so. But as technology advances, so do the threats.

Antivirus

eSecurity Planet

OCTOBER 22, 2024

Lumma stealer: Designed to harvest personal information and sensitive data from infected devices. Legitimate companies rarely ask users to run scripts or share sensitive information via email. Regularly back up your data : Frequent backups can safeguard your information against ransomware attacks and malware infections.

Scams

Security Affairs

APRIL 16, 2025

The threat actors used an application that allowed them to easily spoof all of the technical information displayed not only on the About Device page but also in the reports of such popular applications as AIDA64 and CPU-Z.” At the same time, their actual technical specifications were far from what their product page claimed.

Malware

Webroot

NOVEMBER 21, 2024

The five core components of a VPN are: Encryption : The conversion of information into a coded format that can only be read by someone who has the decryption key. Antivirus augmentation Even if you already have antivirus software, using a VPN enhances your personal cybersecurity. How do VPNs work?

VPN

Security Affairs

FEBRUARY 4, 2025

Threat actors target Brazilian users by stealing financial data, the malware can harvest sensitive information from over 70 financial applications and numerous websites. It gathers system details, including antivirus information, encodes the data, and sends it to a remote server.

Banking

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. Millions of customers were put at risk when their social security numbers, phone numbers, and other sensitive personal information were leaked.

Consumer Protection

Krebs on Security

MAY 28, 2025

The fud bit stands for Fully Un-Detectable, and it refers to cybercrime resources that will evade detection by security tools like antivirus software or anti-spam appliances. Soon after, Scylla started receiving large amounts of email correspondence intended for the group’s owners.

Malware

Tech Republic Security

MAY 28, 2025

Compare Bitdefender and McAfee to find the best antivirus for your needs. Discover features and make an informed choice.

Antivirus

Hacker's King

DECEMBER 16, 2024

Phishing and Social Engineering : Phishing remains a popular attack method, leveraging emails, fake websites, and social media to deceive users into providing sensitive information. Cybercriminals are also increasingly using social media to gather intelligence, exploit personal information, and initiate attacks.

Cyber Attacks

Security Affairs

DECEMBER 17, 2024

Recommendations include timely patching, using strong and unique passwords, enabling multi-factor authentication, implementing security tools to detect abnormal activity, auditing accounts, scanning for open ports, segmenting networks, updating antivirus software, and creating offline backups.

Architecture

Security Affairs

APRIL 21, 2025

Since victims often do not recall their PIN immediately, the attackers guide them through their mobile banking application to retrieve this sensitive information.” The malware maintains a low detection rate among antivirus solutions due to its minimal permission model and narrow focus on NFC relay attacks.

Malware

Security Affairs

APRIL 2, 2025

In March 2018, security researchers at Antivirus firmDr.Web discovered that 42 models of low-cost Android smartphones were shipped with the Android.Triada.231 .” To protect against malware, experts recommend buying smartphones from authorized distributors and installing security solutions like Kaspersky for Android immediately.

Cryptocurrency

Security Affairs

MARCH 7, 2025

Upon gaining initial access to the target, Medusa hackers use remote management and monitoring (RMM) tools like SimpleHelp and AnyDesk for maintaining persistence and employ BYOVD with KillAV to disable antivirus, a tactic seen in BlackCat and RansomHub ransomware operations.

Ransomware

Hacker's King

OCTOBER 20, 2024

Tools like firewalls, antivirus software, and encryption help safeguard information. It ensures that sensitive information like personal details or financial data remains secure even if intercepted. Data Loss Prevention (DLP) DLP tools are used to prevent the unauthorized sharing of sensitive information.

Cybersecurity

Security Affairs

NOVEMBER 6, 2024

“This is to inform you that Memorial Hospital and Manor is experiencing a ransomware incident. ” The hospital identified the ransomware attack early Saturday after antivirus software installed on the employees’ PCs flagged potential risks. .” This impacts access to our Electronic Health Record system.

Ransomware

Security Affairs

NOVEMBER 5, 2024

This technique has already been observed in other malware, like TrickMo, and allows gathering potentially sensitive information (e.g., ToxicPanda can also access phone albums, convert images to BASE64, and transmit them back to the C2 server. screenshots containing login credentials or virtual cards) from the infected devices.

Banking

Malwarebytes

JANUARY 16, 2025

An investigation showed that cybercriminals had inserted malicious software that was used to scrape credit card information used on its website. Identity monitoring alerts you if your personal information is found being illegally traded online, and helps you recover after. Enable in-browser protection. Heres what you need to know.

Data breaches

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches

Security Affairs

MARCH 26, 2025

It contacts a C2 server, gains persistence, and collects system information. While only one sample is currently detected by antivirus tools, many others remain undetected. it remained largely undetected until resurfacing in late 2024 with new variants written in Crystal, Nim, and Rust.

Malware

Security Affairs

FEBRUARY 28, 2025

In August 2024, several users reported that Dr.Web antivirus detected changes in their TV box system files. Users may also mistakenly believe TV boxes are more secure than smartphones and are less likely to install antivirus software, increasing their risk when downloading third-party apps or unofficial firmware.

Antivirus

eSecurity Planet

JUNE 30, 2025

5 Ease of use 5/5 Malwarebytes provides comprehensive tools to secure your devices, including antivirus, anti-malware, privacy protection, and scam protection. 5 Norton 360 offers comprehensive protection, including device security features such as antivirus and a password manager, all in one single solution. 5 Cost 4.3/5 5 Cost 4.3/5

Password Management

Security Affairs

JULY 18, 2025

NoMoreRansom warns users to remove the malware first with a reliable antivirus before using the decryptor, or files may be re-encrypted repeatedly. Europol and the FBI are promoting it as an official recovery solution. Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019.

Ransomware

Security Affairs

JULY 9, 2025

Both stealers used Shellter to evade detection with low antivirus flagging. Meanwhile, RHADAMANTHYS infostealer was spread via YouTube comments on game hack videos, linking to malware hosted on MediaFire. “Elastic Security Labs is releasing a dynamic unpacker for binaries protected by SHELLTER. Shellter Elite v11.0

Malware

Security Affairs

MARCH 10, 2025

The discovered infected archives contained an additional executable, with a modified start script tricking victims into disabling antivirus protections. By December 2024, reports emerged of further miner-infected versions spreading via Telegram and YouTube. It fetched a second-stage payload from hardcoded domains, executing it as t.py

Cryptocurrency

Security Affairs

JANUARY 10, 2025

. “Analysis by the NPA Cyber Special Investigation Division, the Metropolitan Police Department, and prefectural police departments indicates that these campaigns are systematic cyberattacks linked to China , primarily aiming to steal information related to Japan’s national security and advanced technologies.”

Antivirus

Security Affairs

FEBRUARY 13, 2025

Users that played the game have received the following email: pic.twitter.com/B98BFs0WbK — SteamDB (@SteamDB) February 12, 2025 The game PirateFi was released as beta, but multiple antivirus flagged it as “Trojan.Win32.Lazzzy.gen.” Lazzzy.gen.” SteamDB estimates that over 800 users may have downloaded the game.

Malware

SecureWorld News

JANUARY 16, 2025

Regularly updating and patching systems, including antivirus software, firewalls, and SCADA networks, can mitigate this risk. Strategies for protecting oil and gas infrastructure Regular updates and patching: Outdated software and hardware are the most common entry points for cyberattacks.

Energy and Utilities

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals.

Advertising

Security Affairs

MAY 1, 2025

The DarkWatchman malware can evade detection by standard antivirus software. Once opened, the archive triggered an infection chain that installed a modified version of DarkWatchman malware on the recipients system.

Malware

Security Through Education

JULY 22, 2025

One of the most common tactics threat actors use to trick individuals into giving up sensitive information, like login credentials, is phishing emails. Their goal is to lure you into interacting with the email by following a malicious link, downloading malware, or entering other confidential information. Mistakes happen.

Phishing

Security Affairs

MARCH 31, 2025

“The main module implements numerous techniques to evade detection by antivirus (AV) and Endpoint Detection and Response (EDRs) including call stack spoofing, sleep obfuscation, and leveraging Windows fibers.” . “The main CoffeeLoader module also resolves API function addresses by hash, but uses the DJB2 algorithm.”

Malware