Security Affairs

JULY 21, 2021

FormBook is a data-stealing malware that is used in cyber espionage campaigns, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents. The post XLoader, a $49 spyware that could target both Windows and macOS devices appeared first on Security Affairs. Pierluigi Paganini.

Spyware 95

Spyware Malware Cybercrime Advertising 95

Security Affairs

SEPTEMBER 17, 2023

TikTok fined €345M by Irish DPC for violating children’s privacy Iranian Peach Sandstorm group behind recent password spray attacks Dariy Pankov, the NLBrute malware author, pleads guilty Dangerous permissions detected in top Android health apps Caesars Entertainment paid a ransom to avoid stolen data leaks Free Download Manager backdoored to serve (..)

Spyware 87

Spyware DDOS Cybercrime Ransomware 87

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 82

Spyware Hacking Malware Social Engineering 82

Security Boulevard

JANUARY 25, 2022

Folks, Who wants to dive deep into some of my latest commercially available research and stay on the top of their OSINT/cybercrime research and threat intelligence gathering game that also includes their team and organization? Cyber Intelligence – Personal Memoir – Dancho Danchev – – Download Free Copy Today!

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

Security Affairs

JULY 30, 2018

A new sophisticated version of the AZORult Spyware was spotted in the wild, it was involved in a large email campaign on July 18. Malware researchers at Proofpoint spotted a new version of the AZORult Spyware in the wild, it was involved in a large email campaign on July 18, just 24 hours it appeared in cybercrime forums on the Dark Web.

Spyware 45

Spyware Cryptocurrency Passwords Malware 45

SecureList

JANUARY 19, 2022

Kaspersky ICS CERT has uncovered a number of spyware campaigns targeting industrial enterprises. The attackers use off-the-shelf spyware, but limit the scope and lifetime of each sample to the bare minimum. The attackers use off-the-shelf spyware, but limit the scope and lifetime of each sample to the bare minimum.

Spyware 81

Spyware Accountability VPN Malware 81

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity.

Surveillance 73

Surveillance Malware Spyware Education 73

Security Boulevard

DECEMBER 30, 2021

Banking trojans have a significant role in the cybercrime scene in Latin America. As a spyware, it gathers classified information from infected systems without the consent of the user and sends gathered information to remote threat actors. Krachulka Banking Malware.DLL File Download Variant-1. Let's start with Krachulka.

Banking 111

Banking Malware Spyware Phishing 111

Security Affairs

JULY 19, 2022

The spyware is able to steal SMS messages, contact lists, and device information and to sign victims up for premium service subscriptions. ThreatLabz researchers announced to have discovered over 50 unique Joker downloader apps on the Play Store till now. The apps have been installed by 100.000+ users, according to the security firm.

Malware 116

Malware Spyware Banking Mobile 116

Security Affairs

JANUARY 1, 2024

TWO SPYWARE SENDING DATA OF MORE THAN 1.5M million downloads have been discovered spying on users and sending data to China. TWO FLAWS IN LINUX UBUNTU AFFECT 40% OF UBUNTU USERS Wiz researchers discovered two Linux vulnerabilities in the Ubuntu kernel that can allow an unprivileged local user to gain elevated privileges.

Cybersecurity 101

Cybersecurity Spyware Data breaches Passwords 101

Security Affairs

APRIL 16, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches 69

Data breaches Spyware Retail Surveillance 69

Security Affairs

NOVEMBER 29, 2019

A successful new operation was announced by Europol, it announced to have dismantled the global organized cybercrime ring behind Imminent Monitor RAT. SecurityAffairs – Imminent Monitor RAT , cybercrime). “The cybercriminals selling and using the IM-RAT affected the computers of tens of thousands of victims worldwide.

Cybercrime 104

Cybercrime Advertising Spyware Hacking 104

Security Affairs

SEPTEMBER 18, 2020

Every third email, meanwhile, contained spyware , which is used by threat actors to steal payment data or other sensitive info to then put it on sale in the darknet or blackmail its owner. Another 17 percent contained downloaders, while backdoors and banking Trojans came third with a 16- and 15-percent shares, respectively.

Phishing 101

Phishing Ransomware Spyware Banking 101

SecureWorld News

JULY 11, 2022

The offer was emailed as a PDF document, and once it was downloaded, spyware infected the company's systems. This recent incident is part of a growing trend in cybercrime, in which threat actors target all kinds of decentralized finance (DeFi) platforms.

Social Engineering 72

Social Engineering Hacking Cryptocurrency Engineering 72

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. This information can range from what websites you visit to your download history to your bank PIN.

Malware 75

Malware Adware Spyware Antivirus 75

Security Affairs

DECEMBER 3, 2022

Google fixed the ninth actively exploited Chrome zeroday this year A new Linux flaw can be chained with other two bugs to gain full root privileges Attack of drones: airborne cybersecurity nightmare Cuba Ransomware received over $60M in Ransom payments as of August 2022 Android Keyboard Apps with 2 Million downloads can remotely hack your device New (..)

Spyware 89

Spyware Data breaches VPN Hacking 89

Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5 Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5

Cyber Attacks 78

Cyber Attacks Firewall Data breaches Telecommunications 78

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 187

Cybercrime Phishing Banking Malware 187

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 90

Data breaches Malware Mobile Spyware 90

SecureList

MAY 27, 2022

When opened, this document eventually downloads a backdoor. Territories affected by Roaming Mantis activity ( download ). One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis. Only download apps from the App Store or Google Play. Other malware.

Phishing 110

Phishing Spyware Firmware Malware 110

Security Affairs

NOVEMBER 27, 2018

A new malspam campaign hit Italy in this days, threat actors are spreading a new variant of a powerful downloader named sLoad. This ps code abuses the BitsTransfer windows functionality to download two important files: config.ini and web.ini that contains the final sLoad stage. ” reads the analysis published by Yoroi.

Spyware 86

Spyware DNS Advertising Malware 86

SecureList

AUGUST 30, 2023

The attackers were able to embed malicious code into the libffmpeg media processing library to download a payload from their servers. If the target opened the document and enabled the macros, a malicious script would extract the embedded downloader and load it with specific parameters.

Malware 78

Malware Spyware Cryptocurrency Government 78

Security Affairs

NOVEMBER 10, 2020

The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans. The messages were devised to trick unsuspecting users into clicking malicious URLs that downloads the Ghimob APK installer. ” continues the analysis.

Banking 97

Banking Mobile Malware Spyware 97

SecureList

NOVEMBER 22, 2022

These are attractive aspects that cybercrime groups will be unable to resist. And not only cybercrime groups, but also state-sponsored groups who have already started targeting this industry. million downloads. As a result, attackers are now paying much more attention to downloaders and droppers, which can avoid detection.

Cryptocurrency 92

Cryptocurrency Mobile Ransomware Banking 92

SecureList

NOVEMBER 1, 2022

The first infection usually aims to install a downloader, which attempts to download other malicious implants from legitimate web services. Once connected to the server, the malware downloads further modules as plugins and loads them on the victim’s machine. í religion that are banned in Iran.

Malware 142

Malware Ransomware Spyware Encryption 142

SecureList

OCTOBER 26, 2021

Following this, they were tricked into downloading previously unknown malware. Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware. Executing this application starts a multi-staged infection chain beginning with a downloader.

Malware 143

Malware Government Surveillance Spyware 143

Security Affairs

MARCH 27, 2023

The final download link is presented on BlogSpot This particular modus operandi matches a particular threat Kaspersky researchers spotted in September 2022 ( link ): NullMixer. Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ). ps1”, “debug4.ps1”

Malware 78

Malware Social Engineering Encryption Marketing 78

IT Security Guru

FEBRUARY 13, 2023

Financially motivated cybercrime, using malware and phishing , is growing at a rapid pace. Malware Cybercriminals can use malware like spyware to break into your phone or computer and potentially steal your banking details. Do not download any files they may contain. 7.

Banking 63

Banking Cybersecurity Antivirus Phishing 63

Security Affairs

MAY 8, 2020

H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases. They, in turn, let spyware and backdoors move ahead and become the second most popular malware with a 35-percent share.

Phishing 55

Phishing Spyware Banking Malware 55

Security Affairs

MARCH 14, 2019

One-line card stealing code downloads a JavaScript Sniffer once a customer lands on a checkout page, which intercepts credit card data and sends it to local storage. 1 The screenshot shows a one-line code (line # 771) that downloads a JS Sniffer designed to steal customers’ data once a user lands on a checkout page. li host.”.

eCommerce 83

eCommerce Marketing Data breaches Advertising 83

Security Affairs

APRIL 5, 2019

The malware has evolved over time and has added functionality, in fact, apart from collecting banking credentials it is also able to collect keystrokes, cryptocurrencies, screenshots, webmail, integrating spyware features together with banking Trojans features. If true, it download the next stage from “hxxps://i[.]imgur[.]com/TVkWKQa[.]png”.

Banking 82

Banking Malware Cryptocurrency Advertising 82

SecureList

NOVEMBER 10, 2021

Looking for alternative sources to download a streaming app or an episode of a show, users often discover various types of malware, including Trojans, spyware and backdoors, as well as naughty applications, such as adware. Users there most frequently faced malicious files while attempting to download streaming app downloaders.

Phishing 100

Phishing Accountability Malware Adware 100

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. MOUSEISLAND MOUSEISLAND is usually found within the embedded macros of a Microsoft Word document and can download other payloads.

Malware 82

Malware Banking Healthcare Penetration Testing 82

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Updates for Samsung, the scam app with 10M+ downloads. Israeli blamed Russia for jamming at Israeli Ben Gurion airport. New variant of Dridex banking Trojan implements polymorphism. Singapore Government will run its third bug bounty program.

Scams 47

Scams Spyware DNS Advertising 47

Responsible Cyber

APRIL 8, 2020

As cybercrime has become well-funded and increasingly sophisticated, phishing remains one of the most effective methods used by criminals to introduce malware into businesses. Ransomware is a type of malware, but others exist, including spyware, adware, bots and Trojans. Phishing and Spear Phishing.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

Malwarebytes

FEBRUARY 12, 2021

The scammers created those fake identities to redirect traffic away from the adult platforms onto pages showing bogus alerts claiming users were infected with pornographic spyware. The list of IOCs can be downloaded from our GitHub here. We reported our findings to MindGeek and continue to track and share new incidents as they arise.

Scams 94

Scams Advertising Spyware Mobile 94

Security Affairs

MARCH 19, 2019

The new Trojan was presumably downloaded to a victim’s computer as part of the second phase of a so-called watering hole attack, which, according to Group-IB report on Lazarus , the group has been actively using since 2016. The gang’s new endeavor took its name from the implant downloaded to victims’ computers.

Banking 76

Banking Government Passwords Marketing 76