Malware - Cyber Security Informer

Search:

DAY

WEEK

MONTH

YEAR

Jul 13 - Jul 19

Jul 06 - Jul 12

Jun 29 - Jul 05

Jun 22 - Jun 28

Jun 15 - Jun 21

MORE

MORE

MORE

MORE

Select your country:
Sign up | Log in

Malware

article thumbnail

Using Legitimate GitHub URLs for Malware

Schneier on Security

APRIL 22, 2024

Interesting social-engineering attack vector : McAfee released a report on a new LUA malware loader distributed through what appeared to be a legitimate Microsoft GitHub repository for the “C++ Library Manager for Windows, Linux, and MacOS,” known as vcpkg.

Malware

Malware Social Engineering Engineering Software

article thumbnail

PIN-Stealing Android Malware

Schneier on Security

JANUARY 9, 2024

The malware captures any PINs and passwords the victim enters to unlock their device and can later use them to unlock the device at will to perform malicious activities hidden from view.

Malware

Malware Banking Authentication Passwords

Join 29,000+

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

'Operation Endgame' Hits Malware Delivery Platforms

Krebs on Security

MAY 30, 2024

Law enforcement agencies in the United States and Europe today announced Operation Endgame, a coordinated action against some of the most popular cybercrime platforms for delivering ransomware and data-stealing malware. Dubbed "the largest ever operation against botnets," the international effort…

Malware

Malware Cybercrime Ransomware

article thumbnail

FBI Disables Russian Malware

Schneier on Security

MAY 10, 2023

Reuters is reporting that the FBI “had identified and disabled malware wielded by Russia’s FSB security service against an undisclosed number of American computers, a move they hoped would deal a death blow to one of Russia’s leading cyber spying programs.” Presumably we will learn more soon.

Malware

Malware Hacking

article thumbnail

International Malware Takedown Seized 100+ Servers

Tech Republic Security

MAY 31, 2024

‘Operation Endgame’ is an ongoing, law enforcement effort to disrupt botnets, malware droppers and malware-as-a-service.

Malware

Malware Phishing

article thumbnail

New ICS Malware 'FrostyGoop' Targeting Critical Infrastructure

The Hacker News

JULY 23, 2024

Cybersecurity researchers have discovered what they say is the ninth Industrial Control Systems (ICS)-focused malware that has been used in a disruptive cyber attack targeting an energy company in the Ukrainian city of Lviv earlier this January.

Malware

Malware Cyber Attacks Cybersecurity

article thumbnail

Over 3,000 GitHub accounts used by malware distribution service

Bleeping Computer

JULY 24, 2024

Threat actors known as 'Stargazer Goblin' have created a malware Distribution-as-a-Service (DaaS) from over 3,000 fake accounts on GitHub that push information-stealing malware. [.]

Accountability Malware

article thumbnail

PKfail Secure Boot bypass lets attackers install UEFI malware

Bleeping Computer

JULY 25, 2024

Hundreds of UEFI products from 10 vendors are susceptible to compromise due to a critical firmware supply-chain issue known as PKfail, which allows attackers to bypass Secure Boot and install malware. [.]

Malware

Malware Firmware

article thumbnail

Fake CrowdStrike repair manual pushes new infostealer malware

Bleeping Computer

JULY 23, 2024

CrowdStrike is warning that a fake recovery manual to repair Windows devices is installing a new information-stealing malware called Daolpu. [.]

Malware

Malware

article thumbnail

Security Affairs Malware Newsletter – Round 3

Security Affairs

JULY 21, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Ransomware Hacking

article thumbnail

Dark Gate malware campaign uses Samba file shares

Security Affairs

JULY 14, 2024

A Dark Gate malware campaign from March-April 2024 demonstrates how attackers exploit legitimate tools and services to distribute malware. Palo Alto Networks Unit 42 researchers shared details about a DarkGate malware campaign from March-April 2024. The malware is considered a sophisticated threat and is continuously improved.

Malware

Malware Cybercrime Software Phishing

article thumbnail

Security Affairs Malware Newsletter – Round 2

Security Affairs

JULY 14, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Spyware Internet Internet

article thumbnail

New ATM Malware family emerged in the threat landscape

Security Affairs

MAY 27, 2024

Experts warn of a new ATM malware family that is advertised in the cybercrime underground, it was developed to target Europe. A threat actor is advertising a new ATM malware family that claims to be able of compromised 99% of devices in Europe. “The malware is fully automated, simplifying its deployment and operation.”

Malware

Malware Banking Advertising Cybercrime

article thumbnail

Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More

Tech Republic Security

JANUARY 18, 2024

The Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA's tips for protecting against this malware threat.

Malware

Malware Cybersecurity

article thumbnail

Facebook ads for Windows desktop themes push info-stealing malware

Bleeping Computer

JULY 15, 2024

Cybercriminals use Facebook business pages and advertisements to promote fake Windows themes that infect unsuspecting users with the SYS01 password-stealing malware. [.]

Malware

Malware Advertising Passwords

article thumbnail

Quick Glossary: Malware

Tech Republic Security

SEPTEMBER 26, 2023

Malware is an insidious infection that will steal productivity from your enterprise and potentially wreak havoc on your network. To prevent and counteract malware, it’s important to know the terminology surrounding it.

Malware

Malware Technology

article thumbnail

Android malware, Android malware and more Android malware

SecureList

MARCH 20, 2024

Introduction Malware for mobile devices is something we come across very often. million malware, adware, and riskware attacks on mobile devices. Last month, we wrote a total of four private crimeware reports on Android malware, three of which are summarized below. In 2023 , our technologies blocked 33.8 and sends it to the C2.

Malware

Malware Mobile Firmware Spyware

article thumbnail

Chinese Hackers Target Taiwan and US NGO with MgBot Malware

The Hacker News

JULY 23, 2024

non-governmental organization (NGO) based in China have been targeted by a Beijing-affiliated state-sponsored hacking group called Daggerfly using an upgraded set of malware tools. Organizations in Taiwan and a U.S. In the attack on

Malware

Malware Hacking

article thumbnail

Hamster Kombat’s 250 million players targeted in malware attacks

Bleeping Computer

JULY 23, 2024

Threat actors are taking advantage of the massive popularity of the Hamster Kombat game, targeting players with fake Android and Windows software that install spyware and information-stealing malware. [.]

Malware

Malware Spyware Software Cryptocurrency

article thumbnail

Security Affairs Malware Newsletter – Round 1

Security Affairs

JULY 7, 2024

Today marks the launch of the Security Affairs newsletter, specializing in Malware. Each week, it will feature a collection of the best articles and research on malware. This newsletter complements the weekly one you already receive.

Malware

Malware Spyware Cybercrime Ransomware

article thumbnail

Security Affairs Malware Newsletter – Round 3

Security Affairs

JULY 21, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Ransomware Hacking

article thumbnail

Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware

The Hacker News

JULY 23, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) has alerted of a spear-phishing campaign targeting a scientific research institution in the country with malware known as HATVIBE and CHERRYSPY.

Malware

Malware Phishing Government

article thumbnail

SocGholish malware used to spread AsyncRAT malware

Security Affairs

JULY 22, 2024

Huntress researchers observed the JavaScript downloader malware SocGholish (aka FakeUpdates ) that is being used to deliver remote access trojan AsyncRAT and the legitimate open-source project BOINC (Berkeley Open Infrastructure Network Computing Client).

Malware

Malware Cryptocurrency Hacking Software

article thumbnail

SocGholish Malware Exploits BOINC Project for Covert Cyberattacks

The Hacker News

JULY 21, 2024

The JavaScript downloader malware known as SocGholish (aka FakeUpdates) is being used to deliver a remote access trojan called AsyncRAT as well as a legitimate open-source project called BOINC.

Malware

Malware

article thumbnail

Cyberattack Rate Surges as Novel Malware Growth Accelerates

Security Boulevard

JUNE 28, 2024

The post Cyberattack Rate Surges as Novel Malware Growth Accelerates appeared first on Security Boulevard. The rate of cyberattacks is rising as the threat level continues to evolve, according to BlackBerry Limited’s latest Global Threat Intelligence Report.

Malware

Malware Social Engineering Engineering Security Awareness

article thumbnail

ViperSoftX malware covertly runs PowerShell using AutoIT scripting

Bleeping Computer

JULY 10, 2024

The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection. [.]

Malware

Malware

article thumbnail

Temu is Malware — It Sells Your Info, Accuses Ark. AG

Security Boulevard

JUNE 28, 2024

The post Temu is Malware — It Sells Your Info, Accuses Ark. Chinese fast-fashion-cum-junk retailer “is a data-theft business.” AG appeared first on Security Boulevard.

Malware

Malware Retail Social Engineering Data privacy

article thumbnail

Telegram: The Dark Horse of Website Malware Attacks

Penetration Testing

JUNE 2, 2024

A new in-depth analysis by Krasimir Konov, malware analyst... The post Telegram: The Dark Horse of Website Malware Attacks appeared first on Penetration Testing. Telegram, the messaging platform known for its emphasis on privacy and security, has been revealed as a surprisingly potent tool in the hands of cybercriminals.

Malware

Malware Penetration Testing

article thumbnail

French police push PlugX malware self-destruct payload to clean PCs

Bleeping Computer

JULY 25, 2024

The French police and Europol are pushing out a "disinfection solution" that automatically removes the PlugX malware from infected devices in France. [.]

Malware

Malware

article thumbnail

FrostyGoop malware attack cut off heat in Ukraine during winter

Bleeping Computer

JULY 23, 2024

Russian-linked malware was used in a January 2024 cyberattack to cut off the heating of over 600 apartment buildings in Lviv, Ukraine, for two days during sub-zero temperatures. [.]

Malware

Malware

article thumbnail

New BugSleep malware implant deployed in MuddyWater attacks

Bleeping Computer

JULY 15, 2024

The Iranian-backed MuddyWatter hacking group has partially switched to using a new custom-tailored malware implant to steal files and run commands on compromised systems. [.]

Malware

Malware Hacking

article thumbnail

Kaspersky Study: Devices Infected With Data-Stealing Malware Increased by 7 Times Since 2020

Tech Republic Security

APRIL 18, 2024

Nearly 10 million devices were infected with data-stealing malware in 2023, with criminals stealing an average of 50.9 credentials per device.

Malware

Malware Big data Data breaches Ransomware

article thumbnail

PHP Vulnerability Used For Malware And DDOS Attacks

Security Boulevard

JULY 25, 2024

In this article, we’ll learn more about the PHP vulnerability exploit and what can be done to safeguard against it. […] The post PHP Vulnerability Used For Malware And DDOS Attacks appeared first on TuxCare. The post PHP Vulnerability Used For Malware And DDOS Attacks appeared first on Security Boulevard.

DDOS

DDOS Malware Cybercrime Media

article thumbnail

Cryptocurrency Traders Beware: New Malware Exploits RDPWrapper and Tailscale

Penetration Testing

JULY 18, 2024

This multi-stage attack utilizes a combination of phishing emails, malicious shortcut files, PowerShell scripts, and legitimate software like RDPWrapper... The post Cryptocurrency Traders Beware: New Malware Exploits RDPWrapper and Tailscale appeared first on Cybersecurity News.

Cryptocurrency Malware Phishing Software

article thumbnail

New Cuttlefish Malware Evades Detection, Targets SOHO Routers

Penetration Testing

MAY 1, 2024

Security researchers at Lumen Technologies’ Black Lotus Labs have uncovered a sophisticated new malware campaign targeting enterprise-grade small office/home office (SOHO) routers.

Malware

Malware Penetration Testing Technology

article thumbnail

Redline Stealer Malware Evolves with Sneaky New Tricks, Spreads Globally

Penetration Testing

APRIL 17, 2024

McAfee Labs researchers have uncovered a dangerous new variant of the Redline Stealer malware that uses clever obfuscation tactics and aggressive social engineering to trick victims and evade detection.

Penetration Testing

Penetration Testing Malware Social Engineering Engineering

article thumbnail

Cybercriminals pose as "helpful" Stack Overflow users to push malware

Bleeping Computer

MAY 29, 2024

Cybercriminals are abusing Stack Overflow in an interesting approach to spreading malware—answering users' questions by promoting a malicious PyPi package that installs Windows information-stealing malware. [.]

Malware

Malware

article thumbnail

Beware: Fake Browser Updates Deliver BitRAT and Lumma Stealer Malware

The Hacker News

JUNE 2, 2024

Fake web browser updates are being used to deliver remote access trojans (RATs) and information stealer malware such as BitRAT and Lumma Stealer (aka LummaC2). Fake browser updates have been responsible for numerous malware infections, including those of the well-known SocGholish malware," cybersecurity firm eSentire said in a new report. "In

Malware

Malware Cybersecurity

article thumbnail

New Malware Targets Exposed Docker APIs for Cryptocurrency Mining

The Hacker News

JUNE 18, 2024

Cybersecurity researchers have uncovered a new malware campaign that targets publicly exposed Docket API endpoints with the aim of delivering cryptocurrency miners and other payloads.

Cryptocurrency Malware Cybersecurity

article thumbnail

Crooks manipulate GitHub’s search results to distribute malware

Security Affairs

APRIL 13, 2024

Researchers warn threat actors are manipulating GitHub search results to target developers with persistent malware. Checkmarx researchers reported that t hreat actors are manipulating GitHub search results to deliver persistent malware to developers systems. Merely checking for known vulnerabilities is insufficient.

Malware

Malware Cryptocurrency Encryption Hacking

article thumbnail

New WogRAT malware abuses online notepad service to store malware

Bleeping Computer

MARCH 5, 2024

A new malware dubbed 'WogRAT' targets both Windows and Linux in attacks abusing an online notepad platform named 'aNotepad' as a covert channel for storing and retrieving malicious code. [.]

Malware

Malware

article thumbnail

Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk

The Hacker News

JULY 11, 2024

The China-linked advanced persistent threat (APT) group codenamed APT41 is suspected to be using an "advanced and upgraded version" of a known malware called StealthVector to deliver a previously undocumented backdoor dubbed MoonWalk.

Malware

Malware

article thumbnail

New 'Brokewell' Android Malware Spread Through Fake Browser Updates

The Hacker News

APRIL 26, 2024

Fake browser updates are being used to push a previously undocumented Android malware called Brokewell. Brokewell is a typical modern banking malware equipped with both data-stealing and remote-control capabilities built into the malware," Dutch security firm ThreatFabric said in an analysis published Thursday.

Malware

Malware Banking

article thumbnail

Malicious Emails Bypass Secure Email Gateways, Delivering FormBook Malware

Penetration Testing

JULY 26, 2024

A new wave of cyberattacks has exposed a critical weakness in Secure Email Gateways (SEGs), allowing malicious emails to bypass security filters and deliver dangerous malware payloads.

Malware

Malware Phishing Cybersecurity