Security Affairs

JULY 21, 2021

Check Point Research (CPR) experts have spotted a cheap malware, dubbed XLoader variant, which was upgraded to target both Windows and macOS PCs. XLoader is a very cheap malware strain that is based on the popular Formbook Windows malware. Thus, a “Malware-as-a-Service” scheme is used. ” continues the report.

Spyware 102

Spyware Malware Cybercrime Advertising 102

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC. Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches 100

Data breaches Phishing Ransomware Malware 100

Security Affairs

JUNE 4, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 89

Spyware Hacking Malware Social Engineering 89

Security Affairs

AUGUST 21, 2022

The Donot Team threat actor, aka APT-C-35 , has added new capabilities to its Jaca Windows malware framework. In the past, the Donot Team spyware was found in attacks outside of South Asia. To understand which modules are used in the current infection, the malware communicates with another C2 server.” Pierluigi Paganini.

Malware 96

Malware Spyware Phishing Government 96

Security Affairs

FEBRUARY 10, 2023

The TA886 hacking group targets organizations in the United States and Germany with new spyware tracked as Screenshotter. A recently discovered threat actor, tracked as TA886 by security firm Proofpoint, is targeting organizations in the United States and Germany with new malware dubbed Screenshotter.

Malware 86

Malware Phishing Spyware Cybercrime 86

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Downloaders , intended for the installation of additional malware,and backdoors , granting cybercriminals remote access to victims’ computers, also made it to top-3.

Phishing 104

Phishing Ransomware Spyware Banking 104

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. A new study by HostingAdvice, the premier authority on web hosting, found that 32% of Americans say they’ve gotten hacked from visiting a sketchy website and of those, 53% got a computer virus. Gainesville, Fla.,

Hacking 100

Hacking DDOS Small Business Spyware 100

Security Affairs

FEBRUARY 3, 2023

Russia-linked threat actor Gamaredon employed new spyware in cyber attacks aimed at public authorities and critical information infrastructure in Ukraine. The attack chain starts with spear-phishing messages with a.RAR attachment named “12-1-125_09.01.2023.” lnk” (“Request of the Security Service of Ukraine 12-1-125 dated 09.01.2023.lnk”).

Malware 91

Malware Spyware DNS Government 91

Security Affairs

MAY 18, 2020

Security experts discovered a highly sophisticated Android spyware platform, dubbed Mandrake, that remained undetected for four years. Researchers from Bitdefender discovered a high-sophisticated Android spyware platform dubbed Mandrake, it was involved in highly targeted attacks against specific devices. ” continues the report.

Spyware 93

Spyware Malware Advertising Banking 93

Security Affairs

JUNE 15, 2020

The Earth Empusa threat group is distributing new Android spyware, dubbed ActionSpy, through watering hole attacks to targets Turkic minority group. Attackers injected the malicious code to deploy the spyware in websites, some of them were actually fake. The server, in turn, may send some commands to the compromised device.

Spyware 67

Spyware Advertising Encryption Phishing 67

SecureList

FEBRUARY 16, 2023

Short-lived phishing sites often offered to see the premieres before the eagerly awaited movie or television show was scheduled to hit the screen. At the beginning of that year, we still observed phishing attacks that used the themes of infection and prevention as the bait.

Phishing 93

Phishing Scams Accountability Energy and Utilities 93

Security Affairs

SEPTEMBER 3, 2023

Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US Being Used to Phish So Many of Us?

Social Engineering 108

Social Engineering Spyware Data breaches Surveillance 108

Security Affairs

MARCH 8, 2020

Experts uncovered a new Coronavirus (COVID-19 ) -themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware. states the analysis published by FireEye.

Malware 124

Malware Scams Social Engineering Phishing 124

Threatpost

APRIL 21, 2020

Highly targeted spearphishing emails are being sent to oil and gas companies in hopes of infecting them with the Agent Tesla spyware.

Spyware 100

Spyware Phishing Malware Hacking 100

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 86

Malware Banking Healthcare Penetration Testing 86

Security Affairs

JULY 18, 2019

Intezer spotted a new piece of Linux malware dubbed EvilGnome because it disguises as a Gnome extension. The researchers attribute the spyware to the Russia-linked and Gamaredon Group. The attack starts with spear-phishing emails containing weaponized attachments, the malware is distributed via Russian hosting providers.

Spyware 85

Spyware Malware Advertising Cyber Attacks 85

SecureList

FEBRUARY 9, 2022

The most common malware family found in attachments were Agensla Trojans. Our Anti-Phishing system blocked 253 365 212 phishing links. Safe Messaging blocked 341 954 attempts to follow phishing links in messengers. Hurry up and lose your account: phishing in the corporate sector. Trends of the year.

Phishing 66

Phishing Scams Accountability Banking 66

Security Affairs

OCTOBER 1, 2023

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One FBI warns of dual ransomware attacks Progress Software fixed two critical severity flaws in WS_FTP Server Child abuse site taken down, organized child exploitation crime suspected – exclusive A still unpatched zero-day RCE impacts more than 3.5M

Artificial Intelligence 104

Artificial Intelligence Firmware Data breaches Hacking 104

Security Affairs

JUNE 17, 2023

Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9 Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches 90

Data breaches DDOS Backups Firewall 90

Security Affairs

OCTOBER 28, 2018

Belgian newspaper reported that investigators had found proof that the Belgacom hack was the work of the UK GCHQ intelligence agency. Back to September 2013, Belgacom (now Proximus), the largest telecommunications company in Belgium and primarily state-owned, announced its IT infrastructure had suffered a malware-based attack.

Hacking 84

Hacking Spyware Telecommunications Malware 84

Identity IQ

FEBRUARY 21, 2023

Most times, spam emails contain malware , which can compromise your devices connected to the email. Trojan Horses A trojan horse is a malware that is disguised to appear as a legitimate program. Unfortunately, many individuals who have methods of verifying emails can also fall victim to this malware. This is a trap.

Identity Theft 97

Identity Theft Phishing Malware Data breaches 97

eSecurity Planet

JUNE 16, 2022

billion malware attacks were identified by the report. Cisco Umbrella , analyzing the threat environment for 2022, found that 86% of organizations experienced phishing, 69% experienced unsolicited crypto mining, 50% were affected by ransomware, and 48% experienced some form of information-stealing malware. Crimeware and spyware.

Backups 141

Backups Ransomware Firewall Malware 141

Security Affairs

FEBRUARY 14, 2021

SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B Pierluigi Paganini.

Spyware 93

Spyware Phishing Data breaches Surveillance 93

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 75

Spyware Ransomware Malware Data breaches 75

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 95

Data breaches Malware Mobile Spyware 95

Security Affairs

JULY 25, 2021

Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics Obtaining password hashes of Windows systems with PetitPotam attack. SecurityAffairs – hacking, newsletter). If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 113

Spyware Data breaches Government Threat Reports 113

Malwarebytes

OCTOBER 3, 2022

Fast Company hacked to send obscene and racist messages. APT28 attack uses old PowerPoint trick to download malware. Spyware disguises itself as Zoom downloads. Windows 11 pulls ahead of Windows 10 in anti-phishing stakes. Local government cybersecurity: 5 best practices. FCC moves to block robotexts. Stay safe!

Spyware 57

Spyware Data breaches Passwords Phishing 57

Webroot

OCTOBER 25, 2021

Even strong security can’t prevent an account from being hacked if account credentials are stolen in a phishing attack, one of the most common causes of identity theft. In 2020, phishing scams spiked by 510 percent between January and February alone. Web-borne malware remains widespread.

Identity Theft 120

Identity Theft Spyware Phishing Antivirus 120

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. SecurityAffairs – scranos malware, malware). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 72

Spyware Adware Malware Accountability 72

Security Affairs

DECEMBER 20, 2020

Hacked Subway UK marketing system used in TrickBot phishing campaign Pay2Key hackers stole data from Intels Habana Labs PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs Security Affairs Newsletter is back! SecurityAffairs – hacking, newsletter). Details for 1.9M Details for 1.9M Details for 1.9M

Spyware 91

Spyware Hacking Marketing Ransomware 91

Security Affairs

MARCH 21, 2022

Ukraine CERT (CERT-UA) warns of spear-phishing ??attacks The Government Team for Response to Computer Emergencies of Ukraine (CERT-UA) warns of spear-phishing messages conducted by UAC-0035 group (aka InvisiMole) against Ukrainian state bodies. SecurityAffairs – hacking, InvisiMole). zip”, which contains a shortcut file.

Spyware 87

Spyware DNS Phishing Government 87

eSecurity Planet

FEBRUARY 22, 2022

Most attacks make would-be victims click to install malware or redirect them to a phishing page to steal their credentials. NSO Group’s Pegasus software has been routinely in the headlines in recent years for using zero-click attacks to install its spyware. Spyware and Zero-Days: A Troubling Market.

Spyware 114

Spyware Software Government Social Engineering 114

Security Affairs

JUNE 26, 2022

SecurityAffairs – hacking, newsletter). SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5 Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Small Business 82

Small Business Spyware Data breaches Surveillance 82

Security Affairs

OCTOBER 29, 2021

The Hive ransomware operators have developed a new variant of their malware that can encrypt Linux and FreeBSD. The Linux variant seems to be affected by some bugs, the researchers noticed that the encryption process does not work when the malware is executed with an explicit path. SecurityAffairs – hacking, ransomware).

Encryption 111

Encryption Ransomware Spyware Malware 111

Security Affairs

APRIL 21, 2020

Hackers launched spear-phishing attacks against organizations in the oil and gas industry sector spreading the Agent Tesla info-stealer malware. The attacks aim at infecting victims with the infamous Agent Tesla info-stealer malware. The attacks aim at infecting victims with the infamous Agent Tesla info-stealer malware.

Spyware 104

Spyware Manufacturing Malware Engineering 104

Hot for Security

JUNE 14, 2021

Most security threats faced by regular users arrive via the Internet, whether it’s a malicious app or a rigged website , a scam delivered through the user’s social media channels, or a phishing scheme carried out via email or SMS. In many cases, no malware is needed to compromise this data. iPhones are not immune to hacks.

Mobile 132

Mobile Malware Spyware Media 132

Adam Levin

FEBRUARY 25, 2020

The anti-virus company’s annual mobile malware report said stalkerware reports increased from 40,286 in 2019 to 67,500 in 2019, figures derived from data gleaned from Kaspersky product users that consented to provide statistical data for research purposes. This is thought to be the way Amazon founder and CEO Jeff Bezos was hacked in 2019.

Mobile 236

Mobile Malware Phishing Authentication 236