Malwarebytes

APRIL 6, 2021

In late March 2021, Malwarebytes analysts discovered a phishing email with an attached zip file containing unfamiliar malware. Upon analysis, the obfuscated PowerShell downloader initiated a chain of infection leading to a lesser-known malware called Saint Bot. It was also found in a NATO-themed campaign targeting Ukraine.

Malware 120

Malware Phishing Passwords Architecture 120

Security Affairs

NOVEMBER 12, 2020

Cybersecurity researchers spotted a new modular PoS malware, dubbed ModPipe, that targets PoS restaurant management software from Oracle. ESET has been aware of the existence of modules since the end of 2019 when its experts first spotted the “basic” components of the malware. ” reads the analysis published by ESET.

Malware 134

Malware Architecture Passwords Engineering 134

SecureList

APRIL 18, 2022

Kaspersky experts have found a vulnerability in the Yanluowang encryption algorithm and created a free decryptor to help victims of this ransomware with recovering their files. Geography of the Yanluowang attacks, December 4th, 2021 – April 8th, 2022 ( download ). The encryption code for big files. Yanluowang description.

Encryption 142

Encryption Ransomware Backups VPN 142

Malwarebytes

JANUARY 17, 2023

The company didn't provide information on how the malware got onto the laptop. The malware was not detected by our antivirus software. When the browser interacts with restricted content, it uses the cookie to prove that you have logged in, so you don't need to reenter your password over and over again.

Malware 84

Malware Authentication Antivirus Passwords 84

Security Affairs

OCTOBER 20, 2021

A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated threat actors are using Cookie Theft malware in phishing attacks against YouTube creators since late 2019. ” reads the analysis published by Google TAG. Pierluigi Paganini.

Accountability 129

Accountability Malware Phishing Social Engineering 129

SecureList

DECEMBER 13, 2023

Cybercriminals try to capitalize on their victims in every possible way by distributing various types of malware designed for different platforms. In recent months, we have written private reports on a wide range of topics, such as new cross-platform ransomware, macOS stealers and malware distribution campaigns.

Ransomware 90

Ransomware Passwords Malware Encryption 90

Malwarebytes

JANUARY 11, 2022

Some of you may even have changed your old router’s password for a brand new one. What is a Wi-Fi password? Your Wi-Fi password is how you keep your internet activities, and also your router, secure from people you don’t want to have access. Does my router have a Wi-Fi password?

Passwords 96

Passwords Internet Internet Malware 96

SecureList

APRIL 18, 2022

Kaspersky experts have found a vulnerability in the Yanluowang encryption algorithm and created a free decryptor to help victims of this ransomware with recovering their files. Geography of the Yanluowang attacks, December 4th, 2021 – April 8th, 2022 ( download ). The encryption code for big files. Yanluowang description.

Encryption 111

Encryption Ransomware Backups VPN 111

Hacker Combat

OCTOBER 25, 2021

Google has reported that it disrupted the phishing attacks where threat actors had tried to hijack various YouTube accounts using cookie theft malware. When the victims clicked on the link, it would redirect the victim to some malware landing page. . The malware has the ability to steal passwords and cookies.

Accountability 99

Accountability Malware Scams Antivirus 99

Google Security

OCTOBER 6, 2020

Posted by AbdelKarim Mardini, Senior Product Manager, Chrome Passwords are often the first line of defense for our digital lives. Today, we’re improving password security on both Android and iOS devices by telling you if the passwords you’ve asked Chrome to remember have been compromised, and if so, how to fix them.

Passwords 76

Passwords Phishing Password Management Encryption 76

Malwarebytes

SEPTEMBER 22, 2022

Email with a direct link to the malware. The malware. In the case of the second email, the email itself container a direct link to the malware. The malware turns out to be RedLine infostealer. It also attempts to steal other data from the affected system, like browser history, cookies, and saved browser passwords.

Malware 78

Malware Passwords Password Management Banking 78

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Image: Mandiant.

Malware 276

Malware Software Technology Accountability 276

CyberSecurity Insiders

MAY 11, 2023

Intro In February 2022, Microsoft disabled VBA macros on documents due to their frequent use as a malware distribution method. This move prompted malware authors to seek out new ways to distribute their payloads, resulting in an increase in the use of other infection vectors, such as password-encrypted zip files and ISO files.

Malware 98

Malware Social Engineering Engineering Education 98

Malwarebytes

FEBRUARY 17, 2023

The tag-team campaign serves up ransomware known as Mortal Kombat, which borrows the name made famous by the video game, and Laplas Clipper malware, a clipboard stealer. The BAT loader kicks off a chain of events that results in the download and execution of the ransomware or the clipper malware, from one of two URLs.

Ransomware 77

Ransomware Malware Cryptocurrency Encryption 77

SiteLock

NOVEMBER 18, 2021

If you happen to visit a website that’s been compromised, your computer can quickly be infected by cyber criminals implementing a popular drive-by download attack. Here, we’ll look at what a drive-by download is, types of attacks, and how to stay protected this holiday season. What Is A Drive-By Download? Ransomware.

Firewall 52

Firewall Malware Software Passwords 52

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. The STOP ransomware made the headlines because it is installing password-stealing Trojans on the victims’ machines. SecurityAffairs – STOP ransomare , malware).

Encryption 86

Encryption Ransomware Cryptocurrency Passwords 86

Hot for Security

MAY 21, 2021

Security researchers have discovered a new massive spam email campaign designed to push the latest version of STRRAT malware, according to data shared by Microsoft. It turns out that some malware only impersonates a ransomware attack, leaving the files untouched but scaring people with the possibility of a ransomware infection.

Ransomware 122

Ransomware Malware Security Intelligence Encryption 122

Security Boulevard

JULY 18, 2022

However, threat actors continue to evolve their tactics and are able to successfully upload dangerous apps laced with malware on the Google play store. Recently, the Zscaler ThreatLabz team discovered apps involving multiple instances of the Joker, Facestealer, and Coper malware families spreading in the virtual marketplace.

Banking 98

Banking Malware Encryption Architecture 98

Security Affairs

JUNE 11, 2021

Experts spotted a new mysterious malware that was used to collect a huge amount of data, including sensitive files, credentials, and cookies. Threat actors used custom malware to steal data from 3.2 NordLocker experts speculate the malware campaign leveraged tainted Adobe Photoshop versions, pirated games, and Windows cracking tools.

Malware 115

Malware Computers and Electronics Software Financial Services 115

Security Affairs

MARCH 8, 2020

Experts uncovered a new Coronavirus (COVID-19 ) -themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware.

Malware 124

Malware Scams Social Engineering Phishing 124

Security Affairs

JULY 19, 2020

The four malware families are named Guildma, Javali, Melcoz, and Grandoreiro, experts believe are the result of a Brazilian banking group/operation that is evolving its capabilities targeting banking users abroad. VBS,LNK) or an HTML file which executes Javascript for downloading a malicious file. ” continues Kaspersky.

Banking 104

Banking Malware Phishing Advertising 104

CyberSecurity Insiders

MARCH 28, 2023

The malware is primarily used to steal sensitive information, such as login credentials and financial information, from victims. The Dridex malware typically spreads through spam email campaigns, with the emails containing a malicious attachment or link that, when clicked, will install the malware on the victim's computer.

Banking 78

Banking Malware Backups Education 78

Identity IQ

APRIL 29, 2021

What is Malware? . Malware is an umbrella term used to describe any malicious software designed to harm, exploit, or extract sensitive data from a system, device, or network. Stolen data can include anything from your payment details to your medical records, passwords, and more. Why do Cybercriminals Use Malware?

Malware 98

Malware Adware Spyware Advertising 98

SC Magazine

APRIL 23, 2021

In an April 23 blog , the firm claimed to have digital evidence that Australian company ClickStudios suffered a breach, sometime between April 20 and April 22, which resulted in the attacker dropping a corrupted update to its password manager Passwordstate. The malicious code tries to contact [a URL] in order to retrieve a encrypted code.

Password Management 89

Password Management Passwords Media Malware 89

SecureList

OCTOBER 24, 2023

Introduction As a cybersecurity company, Kaspersky is constantly dealing with known and brand-new malware samples. A good example of this is GoPIX, a malware campaign that has been active since December 2022. If they click such a link, a redirection follows, with the user ending up on the malware landing page.

Ransomware 91

Ransomware Malware Advertising Passwords 91

Security Affairs

DECEMBER 20, 2023

JaskaGO is a new Go-based information stealer malware that targets both Windows and Apple macOS systems, experts warn. JaskaGO is a sophisticated malware that supports an extensive array of commands and can maintain persistence in different ways. Following the discovery, researchers observed dozens of new samples that show the malware.

Malware 113

Malware Passwords Cryptocurrency Software 113

SecureList

DECEMBER 27, 2022

We continue to track the group’s activities and this October we observed the adoption of new malware strains in its arsenal. However, it has recently started to adopt new methods of malware delivery. In addition, the group tested different file types to refine malware delivery methods. To do this, optical disk image (.iso

Malware 131

Malware Banking Passwords Antivirus 131

CyberSecurity Insiders

JULY 13, 2022

AppLockGo Application – This app offers a fingerprint, password or PIN lock and helps secure gallery, SMSes, Contacts and social media apps along with the settings app. It is free to download from both App or Playstore. It is free to download from both App or Playstore. star rating on an average.

Mobile 130

Mobile Surveillance Media Encryption 130

Identity IQ

AUGUST 19, 2023

. #1 Use Anti-Virus and Anti-Malware Software When you use the internet, your computer can become a target for harmful programs. These programs, known as malware , can hurt your computer, take your personal info, and even lock your files until you pay a ransom. The answer is simple: anti-virus and anti-malware software.

Internet 82

Internet Internet Password Management Passwords 82

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 87

Malware Banking Penetration Testing Healthcare 87

Security Affairs

FEBRUARY 12, 2024

Public Wi-Fi users are prime targets for MITM attacks because the information they send is often not encrypted, meaning it’s easy for hackers to access your data. Once they’re in, they can grab your emails, usernames, passwords, and more. They might even lock you out of your own accounts by resetting your passwords.

DNS 126

DNS VPN Encryption Passwords 126

Security Affairs

DECEMBER 14, 2022

The malware uses a bot network to perform distributed brute force attacks against target websites. The experts noticed PHP scripts that download and execute GoTrim bot clients. “Typically, each script downloads the GoTrim malware from a hardcoded URL to a file in the same directory as the script itself and executes it.”

Malware 133

Malware Encryption Accountability Risk 133

Hacker Combat

JULY 7, 2022

A new malware is now an important component when it comes to engineering ransomware attacks. The malware, which goes by the name Bumblebee, was recently analyzed by Symantec researchers. An attachment involving quantum has also shed some light on the way cybercriminals use this new malware to deliver ransomware.

Malware 98

Malware Ransomware Phishing Engineering 98

Malwarebytes

AUGUST 3, 2022

The used lure is in Russian is called “ Information security memo ” which provide security practices for passwords, confidential information, etc. Before initialization, the malware effectively suppresses all error reporting by calling SetErrorMode with 0x8007 as parameter. Data encryption with HTTP requests.

Malware 109

Malware Encryption Antivirus Architecture 109

Security Affairs

APRIL 16, 2024

The malware also grants attackers access to the device’s system, enabling them to retrieve user KeyChain data, device lists, and execute shell commands, potentially gaining full control over the device. “The Loader initiates the process by loading both the encrypted and subsequently decrypted LightSpy kernel.

Spyware 106

Spyware Mobile Malware Encryption 106

Security Affairs

FEBRUARY 27, 2023

An unknown threat actor is targeting government organizations with the PureCrypter downloader, Menlo Security firm reported. Menlo Labs researchers uncovered an unknown threat actor is using the PureCrypter downloader in attacks aimed at government entities. Agent Tesla is a “ commodity malware ”.

Malware 85

Malware Government Passwords Encryption 85

Security Affairs

DECEMBER 4, 2021

The ransomware encrypts files on the targeted systems using the “ cuba” extension. Cuba ransomware has been actively distributed through the Hancitor malware , a commodity malware that partnered with ransomware gangs to help them gain initial access to target networks. ” states the alert.

Ransomware 139

Ransomware Hacking Malware Encryption 139