Items tagged with Malware
Earlier this month, we reported on a phishing attack that stole $23.5 million from the US Department of Defense (DoD). Thankfully, the DoD caught the cybercriminals and recovered the money, but this incident highlights the need for strong cybersecurity practices at the DoD and among its contractors. The DoD is a high...
Read more...
Lately, cybercriminals have been using Telegram to sell malware and other malicious tools as a service. Last month we reported on a Telegram bot that makes automatic phone calls to steal multi-factor authentication (MFA) codes. The Telegram bot gives bad actors an easy-to-use interface for placing scam phone calls and...
Read more...
Another day another malware threat. Yes, yet another new way of delivering malware has shown up recently. That new way does not directly involve files but Windows Event Logs.
According to security researchers at Kaspersky, a customer showed this new behavior. The method injects shellcode payloads into the event...
Read more...
When you are investigating a crime, one of the most important things to establish is "motive." If you know a crime has been committed, having an understanding of why it happened is a critical step to figuring out who did it.
In the strictest sense, installing software on someone else's computer isn't a crime. It's...
Read more...
We all know that it is bad luck to cross a black cat. This particular black cat should make you run in the opposite direction. The FBI recently confirmed that the BlackCat ransomware compromised at least 60 organizations worldwide.
The breaches occurred between November 2021 and March 2022. BlackCat/ALPHV...
Read more...
When Microsoft added Windows Subsystem for Linux it was exciting for developers, but it also raised a question. "If Windows can run Linux, when will it run Android?" A logical inquiry of course, because Android is a Linux-based operating system. Unfortunately, now that Android Subsystem has been added, a bad egg has...
Read more...
Another day another malware threat. Do you ever notice how, when you open an e-mail link, money in your bank account drains away? That shouldn't happen, but if it does, it's probably thanks to QBot's new distribution method.
You might be thinking, 'Hey, I'm smart enough to know I shouldn't click on iffy links!'...
Read more...
Last year, a new Android malware, dubbed "Coper," was discovered stealing banking information, phone call data, texts, and more. ThreatFabric's threat intelligence suggests that a new piece of malware, dubbed "Octo", is a descendant of a preexisting malware family called Exobot, which was first discovered in 2016 and...
Read more...
Always be wary of installing apps on your mobile device, regardless of where that app comes from. Many people use their mobile devices for banking and other financial transactions, because they're always with us, always connected, and easy to use. Unfortunately, because of their ubiquity and ease of use, mobile phones...
Read more...
There is a strong possibility that if you're reading this website, you are familiar with VLC Media Player. The popular application, which bundles important codecs along with the player rather than relying on the OS to provide them, is the video player of choice for millions of people who became tired of fussing with...
Read more...
On April 1st, security researchers discovered a new Android-based spyware contacting infrastructure owned by a Russian-based threat group called Turla. Once installed, this malware can lurk on a device, collecting information and audio recordings while making money for Turla in a rather peculiar way.
The malware...
Read more...
In the past year, the increase of malware-as-a-service has spurred significant growth of ransomware, phishing, and information theft attacks. Recently, Zscaler ThreatLabz researchers came across “BlackGuard,” a sophisticated information stealer advertised for sale on Russian hacking forums with a lifetime price of...
Read more...
It seems like just about every week there is some new malware threat to mobile users, especially for those who use Android. What if we told you that many of those new threats are not actually new at all?
According to Dr. Web, an anti-malware software provider and security research organization, there was a...
Read more...
Did you ever think you would have a digital drug lord in the palm of your hand? No, we're not talking about a game. We're talking about malware that aims to steal your banking information. A new variant of the Abrebot malware has been nicknamed "Escobar" after its package name.
With the package name of...
Read more...
A particularly nasty piece of malware, dubbed SharkBot, is out in the wild and spreading via bogus applications in the Google Play store. SharkBot is designed to steal banking data through a couple of different methods.
Discovered in October of 2021 by Cleafy, SharkBot is somewhat unique when compared to other bank...
Read more...
Another day another security risk. This one happens to get deployed via iffy software deployed on the Microsoft Store. This particular issue is related to installing games via the Microsoft Store, with those games often being clones of legitimate titles, so it is really easy to make this mistake.
Nicknamed Electron...
Read more...
A number of cybersecurity experts and teams have recently released reports going over cybersecurity data from 2021 and detailing the growing ransomware threat. We covered a report revealing which industries and countries were hit the most by ransomware, as well as a report that ransomware attacks doubled in...
Read more...
HP, which maintains a threat analyst team, has released a post on its threat research blog detailing a tricky new malware campaign. Only a day after Microsoft announced that Windows 11 was entering its final phase of availability, becoming available for broad deployment on eligible devices, HP discovered that someone...
Read more...
A cybersecurity firm just recently discovered a search engine optimization (SEO) poisoning campaign intended to dupe users into installing malware on their computers. The campaign works by leveraging various SEO techniques, such as cramming tons of keywords into the source code of various malicious webpages, in order...
Read more...
A trojan known as UpdateAgent began infecting Mac computers back in September 2020, but this infection was relatively innocuous at the time, doing nothing other than collecting some basic system and device information and broadcasting its presence to the command-and-control (C2) server. However, Microsoft has been...
Read more...
A Two-Factor Authentication (2FA) app that's been making the rounds on Google Play could steal your banking information, say researchers at Pradeo, a mobile security research and product provider based out of France. According to the team, the app was removed from the Google Play store, however, it remained active and...
Read more...
A new Android scamware scheme may have cost unsuspecting smartphone owners hundreds of millions of dollars. Dubbed “Dark Herring” by Google App Defense Alliance member Zimperium zLabs, it’s been spotted in 470 different applications on the Google Play Store since it first showed up in March 2020.
The fraudulent...
Read more...
