Tag: malware
697 articles
Pakistan Arrests 21 in Crackdown on Heartsender Malware Service
Pakistan’s recent arrest of 21 individuals behind the notorious Heartsender malware marks a major win against global cybercrime, striking at the heart of a decade-long digital deception scheme.
MacOS Infostealer AMOS Gains Persistent Backdoor Access
MacOS users face a new threat as the AMOS infostealer evolves into a stealthy backdoor, allowing attackers to stay hidden and in control long after the initial infection. Stay informed to protect your data from this persistent danger!
Ingram Micro Resumes Partial Orders After Ransomware Attack
Ingram Micro is cautiously reopening its order lines after a crippling ransomware attack, but long waits and uncertainty remind us just how fragile our global tech supply chains really are.
FDA Urges Strong Cybersecurity in Medical Product Manufacturing
As medical devices become increasingly digital, the FDA is sounding the alarm: cybersecurity must be built in from the start to protect patient safety and trust in this high-stakes landscape.
Inside the Dark Adtech Empire Fueled by Fake CAPTCHAs
Discover how seemingly harmless CAPTCHA tests have become the hidden gateway for a sprawling adtech empire fueling fraud, misinformation, and cyberattacks right under our noses.
KrebsOnSecurity Endures Near-Record 6.3 Tbps DDoS Attack
KrebsOnSecurity just faced a mind-blowing 6.3 Tbps DDoS attack, spotlighting how the rise of insecure IoT devices is fueling a new era of cyber threats that could shake the internet as we know it.
DanaBot Malware Creators Accidentally Infect Their Own PCs
In a stunning twist, the masterminds behind DanaBot accidentally infected their own computers, leading to their shocking unmasking and a major cybercrime bust. Discover how this epic slip-up turned the tables on one of the most notorious malware creators in recent history.
Fake Gaming and AI Firms Spread Malware to Crypto Users via Telegram
Cybercriminals are exploiting the hype around AI, gaming, and Web3 by creating fake companies that spread malware to crypto users via Telegram, using sophisticated social engineering tactics to steal digital assets from Windows and macOS systems. This emerging threat leverages trusted platforms and encrypted messaging to deceive users, underscoring the urgent need for heightened vigilance in the crypto community.
ZuRu Malware Targets Developers Through Trojanized Termius macOS App
Cybercriminals have compromised the trusted macOS SSH client Termius, deploying the ZuRu malware through trojanized installers that stealthily infiltrate developers’ systems and threaten critical infrastructure access. This targeted attack underscores the urgent need for heightened vigilance as adversaries exploit trusted tools to gain strategic footholds in high-value environments.
DoNot APT Targets European Foreign Ministries with LoptikMod Malware
A sophisticated APT group known as DoNot Team has targeted a European foreign ministry with the stealthy, modular LoptikMod malware, marking a dangerous escalation in cyber espionage that threatens national security and the confidentiality of diplomatic communications. Experts warn this persistent, adaptable intrusion exemplifies how digital espionage is reshaping international relations by enabling covert, long-term access to sensitive state secrets.
US Sanctions North Korean Hacker Behind IT Worker Fraud Scheme
The U.S. Treasury’s OFAC has sanctioned Song Kum Hyok, a North Korean hacker linked to the Andariel group, for orchestrating a sophisticated IT worker fraud scheme that exploited global tech networks—signaling a strategic crackdown on state-sponsored cybercrime by targeting its financial lifelines.
Automate Ticketing, Device ID, and Threat Triage with Tines
Tines revolutionizes cybersecurity by automating ticketing, device identification, and threat triage through over 1,000 pre-built workflows—empowering security teams to accelerate response times, reduce human error, and cut through alert fatigue with AI-driven orchestration across leading platforms.
Hackers Exploit Leaked Shellter License to Spread Lumma and SectopRAT
Hackers have exploited leaked Shellter licenses to weaponize this trusted red teaming tool, enabling the stealthy spread of Lumma and SectopRAT malware that evades detection by masquerading as legitimate penetration testing activity. This incident highlights a growing challenge in cybersecurity: safeguarding offensive security tools from misuse without hindering their essential role in strengthening defenses.
Anatsa Android Trojan Infects 90,000 via Fake PDF App on Google Play
Cybersecurity experts have uncovered Anatsa, a sophisticated Android banking trojan infecting 90,000 users via a fake “PDF Update” app on Google Play, exploiting the platform’s trust to steal sensitive banking credentials through convincing overlay attacks. This alarming campaign underscores the evolving threat landscape targeting mobile banking users in North America.
DoNot APT Expands Reach, Aiming at European Foreign Ministries with LoptikMod Malware
DoNot APT targets European foreign ministries using LoptikMod malware, expanding its reach and enhancing its cyber espionage capabilities.
Microsoft Patch Tuesday: Addressing a Zero-Day Vulnerability and a Possible ‘Wormable’ Threat
Microsoft Patch Tuesday addresses a critical zero-day vulnerability and a potential ‘wormable’ threat, ensuring enhanced security for users.
Android TapTrap Attack: Users Deceived by Invisible UI Trick
Discover how Android users fall victim to the TapTrap Attack, a deceptive tactic using invisible UI elements to steal sensitive information.
Cybercriminals Exploit Leaked Shellter Tool License to Distribute Lumma Stealer and SectopRAT Malware
Cybercriminals leverage leaked Shellter tool licenses to distribute Lumma Stealer and SectopRAT malware, heightening cybersecurity threats.
New Android Malware Anatsa Targets US Banks via Google Play
New Android malware Anatsa exploits Google Play to target US banks, threatening user security and sensitive financial information. Stay informed and secure.
18 Deceptive Chrome and Edge Extensions Uncovered by Researchers
Discover 18 deceptive Chrome and Edge extensions identified by researchers that pose security risks and compromise user privacy. Stay informed!
Alarming 188% Annual Increase in Malicious Open Source Packages
Discover the shocking 188% annual rise in malicious open source packages and its implications for developers and software security.
New Discovery: Batavia Windows Spyware Targeting Russian Firms’ Documents
New discovery reveals Batavia Windows spyware targeting documents of Russian firms, raising concerns over cybersecurity and data protection.
New macOS Infostealer Introduces Backdoor for Ongoing Attacks
New macOS infostealer malware introduces a backdoor, enabling ongoing attacks and compromising user data. Stay vigilant against emerging threats.
Malware Disguised as AI Tools: SEO Poisoning Campaign Affects Over 8,500 SMB Users
Discover how a malware campaign disguising itself as AI tools impacted over 8,500 SMB users, highlighting the risks of SEO poisoning.