What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-03-25 13:08:29 | Malware Disguised as Google Updates Pushed via Hacked News Sites (lien direct) | Hacked corporate sites and news blogs running using the WordPress CMS are being used by attackers to deliver backdoor malware that allows them to drop several second-stage payloads such as keyloggers, info stealers, and Trojans. [...] | Malware | ||
|
2020-03-24 09:52:31 | Unknown Hackers Use New Milum RAT in WildPressure Campaign (lien direct) | A new piece of malware that shows no similarities with samples used in known campaigns is currently used to attack computers in various organizations. Researchers named the threat Milum and dubbed the operation WildPressure. [...] | Malware Threat | ||
|
2020-03-23 19:12:32 | Fake Corona Antivirus Software Used to Install Backdoor Malware (lien direct) | Sites promoting a bogus Corona Antivirus are taking advantage of the current COVID-19 pandemic to promote and distribute a malicious payload that will infect the target's computer with the BlackNET RAT and add it to a botnet. [...] | Malware | ||
|
2020-03-23 13:33:26 | HHS.gov Open Redirect Used by Coronavirus Phishing to Spread Malware (lien direct) | An HHS.gov open redirect is currently being used by attackers to push malware payloads with the help of coronavirus-themed phishing emails onto unsuspecting victims' systems. [...] | Malware | ||
|
2020-03-19 18:10:00 | WHO Chief Impersonated in Phishing to Deliver HawkEye Malware (lien direct) | An ongoing phishing campaign delivering emails posing as official messages from the Director-General of the World Health Organization (WHO) is actively spreading HawkEye malware payloads onto the devices of unsuspecting victims. [...] | Malware | ||
|
2020-03-19 11:25:15 | RedLine Info-Stealing Malware Spread by Folding@home Phishing (lien direct) | A new phishing email is trying to take advantage of the Coronavirus pandemic and the race to develop medications by promoting a fake Folding@home app that installs an information-stealing malware. [...] | Malware | ||
|
2020-03-18 17:06:59 | Hackers Hide Malware C2 Communication By Faking News Site Traffic (lien direct) | A cyber-espionage group active since at least 2012 used a legitimate tool to shield their backdoor from analysis attempts to avoid detection. In their effort, the hackers also used a fake host header named after a known news site. [...] | Malware Tool | ||
|
2020-03-18 15:14:52 | Trickbot, Emotet Malware Use Coronavirus News to Evade Detection (lien direct) | The TrickBot and Emotet Trojans have started to add text from Coronavirus news stories to attempt to bypass security software using artificial intelligence and machine learning to detect malware. [...] | Malware | ||
|
2020-03-17 15:30:00 | Windows 10 Secured-Core PCs Can Block Driver-Abusing Malware (lien direct) | Microsoft says that Windows 10 Secured-core PCs can successfully defend their users against malware designed to take advantage of driver security flaws to disable security solutions. [...] | Malware | ||
|
2020-03-14 14:30:20 | BlackWater Malware Abuses Cloudflare Workers for C2 Communication (lien direct) | A new backdoor malware called BlackWater pretending to be COVID-19 information while abusing Cloudflare Workers as an interface to the malware's command and control (C2) server. [...] | Malware | ||
|
2020-03-12 08:23:52 | Advanced Russian Hackers Use New Malware in Watering Hole Operation (lien direct) | Two previously undocumented pieces of malware, a downloader and a backdoor, were used in a watering hole operation attributed to the Russian-based threat group Turla. [...] | Malware Threat | ||
|
2020-03-10 13:29:45 | Microsoft Takes Control of Necurs U.S.-Based Infrastructure (lien direct) | Microsoft announced today that it took over the U.S.-based infrastructure used by the Necurs spam botnet for distributing malware payloads and infecting millions of computers. [...] | Spam Malware | ||
|
2020-03-10 03:32:00 | Malware Unfazed by Google Chrome\'s New Password, Cookie Encryption (lien direct) | Google's addition of the AES-256 algorithm to encrypt cookies and passwords in the Chrome browser had a minor impact on infostealers. [...] | Malware | ||
|
2020-03-09 18:09:13 | Google Play Protect Miserably Fails Android Protection Tests (lien direct) | Google's Play Protect Android mobile threat protection system failed German antivirus testing lab AV-Test real-world tests, scoring zero out of a maximum of six points after very weak malware detection performance. [...] | Malware Threat | ||
|
2020-03-09 15:43:06 | Malware Spread as Nude Extortion Pics of Friend\'s Girlfriend (lien direct) | Attackers have recently warped sextortion scams into baits used to infect their targets with Raccoon information stealer malware designed to help steal credentials, credit card information, desktop cryptocurrency wallets, and more. [...] | Malware | ||
|
2020-03-07 15:12:48 | Data-Stealing FormBook Malware Preys on Coronavirus Fears (lien direct) | Another email campaign pretending to be Coronavirus (COVID-19) information from the World Health Organization (WHO) is distributing a malware downloader that installs the FormBook information-stealing Trojan. [...] | Malware | ||
|
2020-03-06 03:30:01 | TrickBot Malware Targets Italy in Fake WHO Coronavirus Emails (lien direct) | A new spam campaign is underway that is preying on the fears of Coronavirus (COVID-19) to target people in Italy with the TrickBot information-stealing malware. [...] | Spam Malware | ||
|
2020-03-05 11:29:14 | Attackers Deliver Malware via Fake Website Certificate Errors (lien direct) | Cybercriminals are distributing malware using fake security certificate update requests displayed on previously compromised websites, attempting to infect potential victims with backdoors and Trojans using a malicious installer. [...] | Malware | ||
|
2020-03-04 12:09:37 | Windows Explorer Used by Mailto Ransomware to Evade Detection (lien direct) | A newly discovered Mailto (NetWalker) ransomware strain can inject malicious code into the Windows Explorer process so that the malware can evade detection. [...] | Ransomware Malware | ||
|
2020-03-01 13:51:09 | New Evasion Encyclopedia Shows How Malware Detects Virtual Machines (lien direct) | A new Malware Evasion Encyclopedia has been launched that offers insight into the various methods malware uses to detect if it is running under a virtual environment. [...] | Malware | ||
|
2020-02-29 13:00:24 | Hiding Windows File Extensions is a Security Risk, Enable Now (lien direct) | Microsoft hides file extensions in Windows by default even though it's a security risk that is commonly abused by phishing emails and malware distributors to trick people into opening malicious files. [...] | Malware | ||
|
2020-02-28 14:12:03 | Hackers Use Windows 10 RDP ActiveX Control to Run TrickBot Dropper (lien direct) | A group of hackers is using the remote desktop ActiveX control in Word documents to automatically execute on Windows 10 a malware downloader called Ostap that was seen recently adopted by TrickBot for delivery. [...] | Malware | ||
|
2020-02-27 16:09:39 | As Coronavirus Spreads, So Does Covid-19 Themed Malware (lien direct) | Threat actors are still taking advantage of the ongoing COVID-19 global outbreak by attempting to drop Remcos RAT and malware payloads on their targets' computers via malicious files that promise to provide Coronavirus safety measures. [...] | Malware Threat | ||
|
2020-02-27 11:29:23 | Cerberus Android Malware Can Bypass 2FA, Unlock Devices Remotely (lien direct) | The Cerberus banking Trojan has been upgraded with RAT functionality and is now capable of stealing victims' Google Authenticator two-factor authentication (2FA) codes used as an extra layer of security when logging into online accounts. [...] | Malware | ||
|
2020-02-24 16:34:06 | New Mozart Malware Gets Commands, Hides Traffic Using DNS (lien direct) | A new backdoor malware called Mozart is using the DNS protocol to communicate with remote attackers to evade detection by security software and intrusion detection systems. [...] | Malware | ||
|
2020-02-24 08:08:28 | Racoon Malware Steals Your Data From Nearly 60 Apps (lien direct) | An infostealing malware that is relatively new on cybercriminal forums can extract sensitive data from about 60 applications on a targeted computer. [...] | Malware | ||
|
2020-02-21 08:02:31 | Android Malware: Joker Still Fools Google\'s Defense, New Clicker Found (lien direct) | Joker malware that subscribes Android users to premium services without consent is giving Google a hard time as new samples constantly bypass scrutiny and end up in Play Store. [...] | Malware | ||
|
2020-02-20 14:23:41 | FTC Refunds Victims of Office Depot Tech Support Scam (lien direct) | The FTC has begun to issue refunds to people who were convinced into purchasing computer repair services at Office Depot based on fake malware scans. [...] | Malware | ||
|
2020-02-19 03:33:00 | DRBControl Espionage Operation Hits Gambling, Betting Companies (lien direct) | An advanced threat actor has been targeting gambling and betting companies in multiple regions of the globe with malware that links to two Chinese hacker groups. [...] | Malware Threat | ||
|
2020-02-18 10:55:00 | AZORult Malware Infects Victims via Fake ProtonVPN Installer (lien direct) | A fake ProtonVPN website was used since November 2019 to deliver the AZORult information-stealing malware to potential victims in the form of fake ProtonVPN installers as discovered by security researchers at Kaspersky. [...] | Malware | ||
|
2020-02-18 03:30:00 | Hacker Group Catfishes Israeli Soldiers Into Installing Mobile RAT (lien direct) | A hacking group compromised mobile phones belonging to soldiers in the Israel Defense Forces (IDF) using pics of young girls and directing them to download malware disguised as chat apps. [...] | Malware | ||
|
2020-02-14 10:07:30 | US Govt Updates Info on North Korean Malware (lien direct) | The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) released new info on North Korean malware with six new and updated Malware Analysis Reports (MARs) related to malicious cyber activity from North Korea. [...] | Malware | ★★★★★ | |
|
2020-02-13 19:08:55 | U.S. Store Chain Rutter\'s Hit by Credit Card Stealing Malware (lien direct) | Rutter's, a U.S. convenience store, fast food restaurant, and gas station chain owner, has disclosed today that 71 locations were infected with a point-of-sale (POS) malware that was used by attackers to steal customers' credit card information. [...] | Malware | ||
|
2020-02-13 16:54:11 | (Déjà vu) Parallax RAT: Common Malware Payload After Hacker Forums Promotion (lien direct) | A remote access Trojan named Parallax is being widely distributed through malicious spam campaigns that when installed allow attackers to gain full control over an infected system. [...] | Spam Malware | ||
|
2020-02-13 16:54:11 | Parallax RAT: Popular Malware Payload After Hacker Forums Promotion (lien direct) | A remote access Trojan named Parallax is being widely distributed through malicious spam campaigns that when installed allow attackers to gain full control over an infected system. [...] | Spam Malware | ||
|
2020-02-12 14:46:39 | Microsoft Urges Exchange Admins to Disable SMBv1 to Block Malware (lien direct) | Microsoft is recommending administrators disable the SMBv1 network communication protocol on Exchange servers to provide better protection against malware threats and attacks. [...] | Malware | ||
|
2020-02-12 10:29:09 | Google Play Protect Blocked 1.9 Billion Malware Installs in 2019 (lien direct) | Google's Play Protect mobile threat protection service blocked the installation of over 1.9 billion malicious apps downloaded from non-Play Store sources in 2019. [...] | Malware Threat | ||
|
2020-02-07 14:04:29 | Emotet Hacks Nearby Wi-Fi Networks to Spread to New Victims (lien direct) | A recently spotted Emotet Trojan sample features a Wi-Fi worm module that allows the malware to spread to new victims connected to nearby insecure wireless networks according to researchers at Binary Defense. [...] | Malware | ||
|
2020-02-06 11:33:09 | Oscar Nominated Movies Featured in Phishing, Malware Attacks (lien direct) | Attackers are exploiting the hype surrounding this year's Oscar Best Picture nominated movies to infect fans with malware and to bait them to phishing websites designed to steal sensitive info such as credit card details and personal information. [...] | Malware | ||
|
2020-02-05 01:00:00 | Bitbucket Abused to Infect 500,000+ Hosts with Malware Cocktail (lien direct) | Attackers are abusing the Bitbucket code hosting service to store seven types of malware threats used in an ongoing campaign that has already claimed more than 500,000 business computers across the world. [...] | Malware | ||
|
2020-02-01 15:35:03 | Devious Spamhaus Phishing Scam Warns You\'re on an Email Block List (lien direct) | A new phishing campaign distributing malware pretends to be from the Spamhaus Project warning that the recipient's email address has been added to a spam block list due to sending unsolicited email. [...] | Spam Malware | ||
|
2020-01-31 12:31:18 | Winnti Group Infected Hong Kong Universities With Malware (lien direct) | Computer systems at two Hong Kong universities were compromised in a Winnti Group campaign according to ESET researchers, during the Hong Kong protests that started in March 2019. [...] | Malware | ||
|
2020-01-30 19:16:35 | (Déjà vu) Microsoft Detects New TA505 Malware Attacks After Short Break (lien direct) | Microsoft says that an ongoing TA505 phishing campaign is using attachments featuring HTML redirectors for delivering malicious Excel documents, this being the first time the threat actors have been seen adopting this technique. [...] | Malware Threat | ||
|
2020-01-30 19:16:35 | Microsoft Detects New Evil Corp Malware Attacks After Short Break (lien direct) | Microsoft says that an ongoing Evil Corp phishing campaign is using attachments featuring HTML redirectors for delivering malicious Excel documents, this being the first time the threat actors have been seen adopting this technique. [...] | Malware Threat | ||
|
2020-01-29 19:34:59 | Malware Tries to Trump Security Software With POTUS Impeachment (lien direct) | The TrickBot malware has been spotted using text from articles about President Trump's impeachment to bypass the scanning engines of security software. [...] | Malware | ||
|
2020-01-25 11:00:00 | 10% of All Macs Shlayered, Malware Cocktail Served (lien direct) | Many people think that malware only targets Windows and that Macs are safe, but a new report shows how a single Apple malware called Shlayer has attacked over 10% of all Apple computers monitored by an antivirus company. [...] | Malware | ||
|
2020-01-24 14:12:06 | New Ryuk Info Stealer Targets Government and Military Secrets (lien direct) | A new version of the Ryuk Stealer malware has been enhanced to allow it to steal a greater amount of confidential files related to the military, government, financial statements, banking, and other sensitive data. [...] | Malware | ||
|
2020-01-24 03:35:33 | U.S. Govt Agency Hit with New CARROTBALL Malware Dropper (lien direct) | A new malware called CARROTBALL, used as a second-stage payload in targeted attacks, was distributed in phishing email attachments delivered to a U.S. government agency and non-US foreign nationals professionally affiliated with current activities in North Korea. [...] | Malware | ||
|
2020-01-20 18:43:44 | Infiltrating Networks: Easier Than Ever Due to Evil Markets (lien direct) | Attackers don't always need to breach the networks of their victims themselves to plant malware as there are plenty of professional intruders offering their services on underground markets. [...] | Malware | ||
|
2020-01-20 16:36:23 | FTCode Ransomware Now Steals Saved Login Credentials (lien direct) | FTCode ransomware victims now have one more thing to worry about with the malware having been upgraded to also steal saved user credentials from email clients and web browsers. [...] | Ransomware Malware |
To see everything:
Our RSS (filtrered)
