Education and Malware - Cyber Security Informer

PXA Stealer: New Malware Targets Governments and Education Across Europe and Asia

Penetration Testing

NOVEMBER 17, 2024

Cisco Talos recently identified a sophisticated cyber campaign targeting sensitive information in government and educational sectors across Europe and Asia.

Education

Education Government Malware Cybersecurity

Warning over free online file converters that actually install malware

Malwarebytes

MARCH 17, 2025

Instead of converting files, the tools actually load malware onto victims computers. The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). This is the actual malware.

Malware

Malware Adware Education Phishing

Deceptive Google Meet Invites Lures Users Into Malware Scams

eSecurity Planet

OCTOBER 22, 2024

These malware scams lure individuals with fake conference invitations designed to mimic legitimate meeting requests and exploit users’ trust. You are then guided to execute PowerShell code designed to “fix” the supposed problem, unwittingly allowing malware to infiltrate their systems.

Scams

Scams Malware Phishing Social Engineering

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 15

Security Affairs

OCTOBER 13, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Over 300,000!

Malware

Malware DDOS Cryptocurrency Education

Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware

Penetration Testing

MAY 13, 2025

The Seqrite Labs APT-Team has uncovered a complex cyber-espionage operation dubbed Swan Vector, targeting educational institutions and the The post Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware appeared first on Daily CyberSecurity.

Malware

Malware Education Cybersecurity

Russia's COLDRIVER Targets Western Entities with 'LOSTKEYS' Malware

SecureWorld News

MAY 9, 2025

Google's Threat Intelligence Group (GTIG) has identified a new malware strain, dubbed "LOSTKEYS," attributed to the Russian state-sponsored hacking group COLDRIVER. The introduction of LOSTKEYS signifies a strategic shift towards deploying malware for direct data exfiltration.

Malware

Malware Social Engineering Government Engineering

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

A recent report from Tenable highlights how DeepSeek R1, an open-source AI model, can generate rudimentary malware, including keyloggers and ransomware. While the AI-generated malware required manual debugging to function properly, its mere existence signals an urgent need for security teams to adapt their defenses.

Malware

Malware Cybersecurity Cyber threats Threat Detection

Storm-1977 targets education sector with password spraying, Microsoft warns

Security Affairs

APRIL 27, 2025

Microsoft warns that threat actor Storm-1977 is behind password spraying attacksagainst cloud tenants in the education sector. Over the past year, Microsoft Threat Intelligence researchers observed a threat actor, tracked as Storm-1977, using AzureChecker.exe to launch password spray attacks against cloud tenants in the education sector.

Education

Education Passwords Accountability Encryption

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

The Hacker News

MAY 16, 2025

Cybersecurity researchers are calling attention to a new botnet malware called HTTPBot that has been used to primarily single out the gaming industry, as well as technology companies and educational institutions in China.

DDOS

DDOS Education Technology Malware

New botnet HTTPBot targets gaming and tech industries with surgical attacks

Security Affairs

MAY 16, 2025

New botnet HTTPBot is targeting China’s gaming, tech, and education sectors, cybersecurity researchers warn. NSFOCUS cybersecurity discovered a new botnet calledHTTPBotthat has been used to target the gaming industry, technology firms, and educational institutions in China. ” continues the report.

DDOS

DDOS Education IoT Malware

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

The Hacker News

JUNE 13, 2025

According to Palo Alto Networks Unit 42, these malicious injects are obfuscated using JSFuck, which refers to an "esoteric and educational programming style" that uses only a limited set of characters to write and execute code.

Malware

Malware Education Cybersecurity

Phishing Campaign Impersonates Booking.com, Plants Malware

eSecurity Planet

MARCH 14, 2025

A recent phishing campaign has raised alarms among cybersecurity professionals after it impersonated Booking.com to deliver a suite of credential-stealing malware. This command, executed via mshta.exe, downloads and launches various malware families, such as XWorm, Lumma Stealer, VenomRAT, AsyncRAT, Danabot, and NetSupport RAT.

Phishing

Phishing Malware Social Engineering Authentication

Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain

SecureList

MARCH 25, 2025

In mid-March 2025, Kaspersky technologies detected a wave of infections by previously unknown and highly sophisticated malware. Our research is still ongoing, but judging by the functionality of the sophisticated malware used in the attack, it seems the attackers’ goal was espionage. Generic Trojan.Win64.Agent Agent Trojan.Win64.Convagent.gen

Malware

Malware Technology Education Phishing

Bybit Hack: $1.46 Billion Crypto Heist Points to North Korea's Lazarus Group

SecureWorld News

FEBRUARY 26, 2025

Dubai-based exchange Bybit was targeted in a malware-driven attack that resulted in the theft of approximately $1.46 The Bybit theft resulted from malware-driven manipulation of cold wallet transactions, exploiting multi-signature vulnerabilities," Soroko said. billion in crypto assets.

Hacking

Hacking Cryptocurrency Cyber threats Malware

Digital nomads and risk associated with the threat of infiltred employees

Security Affairs

MARCH 4, 2025

In this case, the infiltrator, after managing to obtain a job as an IT worker, allegedly managed to install malware on a Mac workstation provided by the company, with the intent of compromising the systems. Education improves awareness is his slogan.

Risk

Risk Education Scams VPN

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

” The Akira ransomware has been active since March 2023, the threat actors behind the malware claim to have already hacked multiple organizations in multiple industries, including education, finance, and real estate. Ensure default passwords of IoT devices are changed to unique and complex ones.”

Ransomware

Ransomware IoT Encryption Passwords

Video: How Hackers Steal Your Cookies & How to Stop Them

eSecurity Planet

NOVEMBER 6, 2024

Attackers can steal your cookies through phishing, malware, and MITM attacks, leading to data theft, financial loss, and identity theft. They can also exploit vulnerabilities in websites you visit to install malware that extracts cookies from your browser. Let’s take a closer look at the process.

Identity Theft

Identity Theft Phishing Passwords Accountability

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Ptitsyn and his conspirators used a ransomware-as-a-service (RaaS) model to distribute their malware to a network of affiliates. The attacks were observed as recently as February 2024, they targeted government, education, emergency services, healthcare, and other critical infrastructure sectors.

Cybercrime

Cybercrime Ransomware Healthcare Hacking

The “free money” trap: How scammers exploit financial anxiety

Malwarebytes

MARCH 19, 2025

Malware-infested attachments : Scammers send downloadable forms for “subsidy applications,” which are actually embedded with malware that steals information from users’ devices. Educate others : Many scam victims are elderly or financially struggling individuals who may not recognize these red flags.

Scams

Scams Government Identity Theft Phishing

As Seen on Channel 5’s Vanessa (Feltz) Show: What to Do if You’re Targeted by a Scam

Jane Frankland

MAY 16, 2025

in parking lots) redirect to malware ridden websites. MFA Bypass Methods: SIM swaps, malware, or phishing sites that trick you into revealing or approving access. App-based MFA (like Google Authenticator ) is more secure, but still vulnerable to SIM swaps or malware. Goods are never delivered or are counterfeit.

Scams

Scams Password Management Passwords Banking

Android threats rise sharply, with mobile malware jumping by 151% since start of year

Malwarebytes

JUNE 30, 2025

Attackers are no longer simply throwing malware at users and hoping for results. Recent Malwarebytes threat research data reveals a sharp rise in mobile threats across the board, with malware targeting Android devices up 151%. To keep your devices free from Android malware: Get your apps from the Google Play store whenever you can.

Mobile

Mobile Malware Spyware Scams

You should probably delete any sensitive screenshots you have in your phone right now. Here's why

Zero Day

JUNE 26, 2025

Here's why A new Trojan malware is targeting sensitive information, including crypto wallet seed phrases. Also: How Avast's free AI-powered Scam Guardian protects you from online con artists According to Kaspersky, the malware targets iOS and Android devices. Here's how the malware works. What is SparkKitty?

Password Management

Password Management Small Business Passwords Artificial Intelligence

PDF Malware: How Educational Institutions Can Prevent Infection Spreading

Heimadal Security

MAY 8, 2025

Since 2020, there has been a sharp rise in the number of cyberattacks targeting educational institutions. And PDF malware is one of the most common attack vectors. Through my work at Heimdal, I regularly speak with staff at universities, schools, and other educational institutions.

Education

Education Malware Risk

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

SecureWorld News

APRIL 22, 2025

Once control is granted, the attacker can secretly install malware, including infostealers and remote access trojans (RATs), onto the victim's machine. The malware then exfiltrates sensitive data, including cryptocurrency wallet credentials, personal information, and private keys.

Cryptocurrency

Cryptocurrency Social Engineering Cybercrime Engineering

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

SecureWorld News

DECEMBER 17, 2024

Once executed, this upgrade triggered commands to install the malware payload, compromising the victim's system. A phishing campaign also tricked targets into installing malware disguised as a CPU update, widening the attack surface." Be cautious of unfamiliar GitHub repositories.

Phishing

Phishing Threat Detection Social Engineering Cybercrime

IT threat evolution Q3 2024

SecureList

NOVEMBER 29, 2024

The malware utilizes cloud resources for its C2 (command and control) servers, which it accesses via APIs using authentication tokens. While the modus operandi of the threat actor is reminiscent of the CloudWizard APT that we reported on in 2023, the malware code is completely different.

Energy and Utilities

Energy and Utilities Ransomware Malware Government

Top 10 Cybersecurity Trends to Expect in 2025

Hacker's King

DECEMBER 24, 2024

AI-powered malware and phishing schemes can adapt to defenses in real time, making them harder to detect and counter. Focus on Cybersecurity Education and Workforce Development The global shortage of cybersecurity professionals continues to be a pressing issue.

Cybersecurity

Cybersecurity Cyber Insurance IoT Insurance

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

VPN

VPN Government Malware Firewall

Don’t let your kids on Roblox if you’re worried, says Roblox CEO

Malwarebytes

MARCH 13, 2025

Scammers often promise free Robux (the virtual currency used on the platform) or other benefits to trick children into sharing personal information or downloading malware. Besides spending way too much time on the platform, children run the risk of getting exposed to inappropriate content, online predators, cyberbullying, and scams.

Scams

Scams Accountability Education Risk

From Menu to Malware: How Innocent Scans Lead to Quishing Attacks

SecureWorld News

JUNE 23, 2025

These quick scans can become gateways—not to a menu or coupon, but to malicious phishing sites, malware downloads, or credential theft. That code might redirect to a spoofed login page, a malware dropper, or a credential harvesting form. They've realized they don't need to hack complex systems when a curious scan can open the door.

Malware

Malware Phishing Marketing Mobile

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

Protection via training, education Defending against these evolving threats requires more than just technology it demands well-trained personnel at all levels. Warn Healthcare leaders are urged to treat ongoing cyber education as mandatory continuing education, akin to medical training, to ingrain a culture of security mindfulness.

Healthcare

Healthcare Penetration Testing Education Cyber threats

APT trends report Q3 2024

SecureList

NOVEMBER 28, 2024

We also found Cobalt Strike beacons and several traces tying this actor to the ShadowPad malware and UNC2643 activity, which is in turn associated with the HAFNIUM threat actor. In this campaign, the actor decided to attack Russian educational institutions instead of government entities as it had previously.

Malware

Malware Government Software Spyware

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches

Data breaches Cryptocurrency Cybercrime Artificial Intelligence

Understanding MFA Fatigue: Why Cybercriminals Are Exploiting Human Behaviour

IT Security Guru

FEBRUARY 25, 2025

Unlike sophisticated malware or zero-day exploits, these attacks dont need a lot of technical expertise. A mix of technical measures, user education, and proactive monitoring builds a layered defence that limits vulnerabilities. MFA will always be a cornerstone of account security, but it is not a standalone solution.

Social Engineering

Social Engineering Authentication Risk Accountability

Russia-linked APT TAG-110 uses targets Europe and Asia

Security Affairs

NOVEMBER 25, 2024

Russia-linked threat actors TAG-110 employed custom malware HATVIBE and CHERRYSPY to target organizations in Asia and Europe. Insikt Group researchers uncovered an ongoing cyber-espionage campaign by Russia-linked threat actor TAG-110 that employed custom malware tools HATVIBE and CHERRYSPY. HATVIBE uses obfuscation (e.g.,

Malware

Malware Phishing Encryption Government

How Most Cyber Attacks Begin: The Hidden Dangers of Credential-Based Threats

Hacker's King

MAY 24, 2025

The rest of the breaches are a result of malware, zero-day exploits, system misconfiguration, and so on. The threat lies in how real these messages seem, which is why education becomes important. Malware Malware, or malicious software, is utilized to gain unauthorized access, steal sensitive information, or damage equipment.

Cyber Attacks

Cyber Attacks Phishing Passwords Education

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

The Last Watchdog

NOVEMBER 11, 2024

Quite like how pilots use AR simulation in training, cybersecurity professionals can use AR-enabled training simulations that immerse them in hyper-realistic scenarios, offering hands-on cyber defense training and education. Waqas Apart from the training aspect, AR technology can also be used to enhance threat detection in real-time.

Cybersecurity

Cybersecurity Social Engineering Threat Detection Technology

Unmasking North Korea's Covert IT Army. Before You Hire Them

SecureWorld News

NOVEMBER 12, 2024

KnowBe4 discovered their operative's intent when the newly-hired "employee" attempted to load password-stealing malware onto a company-issued device. Grimes also highlighted the importance of internal education, advising: "Anyone involved in hiring or IT should understand the tactics used by North Korean operatives.

Government

Government Cyber threats VPN Education

News alert: INE Security debuts advanced eMAPT certification to close mobile security talent gap

The Last Watchdog

JULY 10, 2025

Cary, NC, July 10, 2025, CyberNewsire — INE Security , a leading provider of cybersecurity education and cybersecurity certifications, today launched its significantly enhanced eMAPT (Mobile Application Penetration Testing) certification. Malware analysts acquire mobile-specific reverse engineering capabilities.

Mobile

Mobile Penetration Testing CSO Engineering

SilentCryptoMiner Infects 2,000 Russian Users via Fake VPN Tools

eSecurity Planet

MARCH 10, 2025

Disguised as a legitimate bypass tool The malware campaign exploits users need to overcome online restrictions. Additionally, by using process hollowing techniques to inject the miner code into legitimate system processes like dwm.exe, the malware remains stealthy and is controlled remotely through a web panel.

VPN

VPN Antivirus Cryptocurrency Malware

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

While fully agentic AI malware remains years away, the industry must prepare now. Promoting continuous learning in privacy tech, AI governance, and Zero Trust, alongside partnerships with educational institutions, helps build a skilled workforce to meet evolving regulatory demands.

Risk

Risk Threat Detection Technology Phishing

86 million AT&T customer records reportedly up for sale on the dark web

Zero Day

JUNE 6, 2025

X Trending Memorial Day tech sales 2025 Memorial Day TV sales 2025 Memorial Day lawn & outdoor sales 2025 Memorial Day phone sales 2025 Memorial Day health tracker sales 2025 Memorial Day headphone sales 2025 Memorial Day laptop sales 2025 Best CRM software of 2025 Best small business CRM software of 2025 Best free website builders of 2025 Best (..)

Password Management

Password Management Passwords Identity Theft Software

Microsoft Announces Security Update with Windows Resiliency Initiative

eSecurity Planet

DECEMBER 4, 2024

This approach also helps to contain the spread of malware and ransomware, which, according to Microsoft’s Digital Defense Report, resulted in 93% of these attacks being successful due to them having access to so many privileged user accounts.

Phishing

Phishing Encryption Authentication Passwords

Drained Wallets: How to Protect Your Assets From Advanced Phishing Scams

IT Security Guru

APRIL 25, 2025

Malware is another means for scammers to gather personal information, or gain access to your digital wallet. Malware, in general, puts your private keys and seed phrases out in the open, making it that much easier for scammers to quickly steal it.

Scams

Scams Phishing Cryptocurrency Cyber threats

PXA Stealer: New Malware Targets Governments and Education Across Europe and Asia

Warning over free online file converters that actually install malware

Trending Sources

Deceptive Google Meet Invites Lures Users Into Malware Scams

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 15

Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware

Russia's COLDRIVER Targets Western Entities with 'LOSTKEYS' Malware

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

Storm-1977 targets education sector with password spraying, Microsoft warns

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

New botnet HTTPBot targets gaming and tech industries with surgical attacks

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

Phishing Campaign Impersonates Booking.com, Plants Malware

Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain

Bybit Hack: $1.46 Billion Crypto Heist Points to North Korea's Lazarus Group

Digital nomads and risk associated with the threat of infiltred employees

Akira ransomware gang used an unsecured webcam to bypass EDR

Video: How Hackers Steal Your Cookies & How to Stop Them

Russian Phobos ransomware operator faces cybercrime charges

The “free money” trap: How scammers exploit financial anxiety

As Seen on Channel 5’s Vanessa (Feltz) Show: What to Do if You’re Targeted by a Scam

Android threats rise sharply, with mobile malware jumping by 151% since start of year

You should probably delete any sensitive screenshots you have in your phone right now. Here's why

PDF Malware: How Educational Institutions Can Prevent Infection Spreading

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

IT threat evolution Q3 2024

Top 10 Cybersecurity Trends to Expect in 2025

China’s Volt Typhoon botnet has re-emerged

Don’t let your kids on Roblox if you’re worried, says Roblox CEO

From Menu to Malware: How Innocent Scans Lead to Quishing Attacks

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

APT trends report Q3 2024

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Understanding MFA Fatigue: Why Cybercriminals Are Exploiting Human Behaviour

Russia-linked APT TAG-110 uses targets Europe and Asia

How Most Cyber Attacks Begin: The Hidden Dangers of Credential-Based Threats

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

Unmasking North Korea's Covert IT Army. Before You Hire Them

News alert: INE Security debuts advanced eMAPT certification to close mobile security talent gap

SilentCryptoMiner Infects 2,000 Russian Users via Fake VPN Tools

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

86 million AT&T customer records reportedly up for sale on the dark web

Microsoft Announces Security Update with Windows Resiliency Initiative

Drained Wallets: How to Protect Your Assets From Advanced Phishing Scams

Stay Connected