Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-03-23 21:30:00 |
Nouveau malware Android cible les clients de 450 institutions financières dans le monde [New Android Malware Targets Customers of 450 Financial Institutions Worldwide] (lien direct) |
"Nexus" est le dernier d'une gamme vaste et croissante de chevaux de Troie ciblant la banque mobile et les applications de crypto-monnaie.
"Nexus" is the latest in a vast and growing array of Trojans targeting mobile banking and cryptocurrency applications. |
Malware
|
|
★★★★
|
|
2023-03-21 14:30:50 |
Personnalisé \\ 'napListener \\' malware un cauchemar pour la détection basée sur le réseau [Custom \\'Naplistener\\' Malware a Nightmare for Network-Based Detection] (lien direct) |
Les acteurs de la menace utilisent des actifs réseau légitimes et du code open source pour voler sous le radar dans les attaques de vol de données en utilisant un ensemble de logiciels malveillants personnalisés inclinés dans l'évasion.
Threat actors are using legitimate network assets and open source code to fly under the radar in data-stealing attacks using a set of custom malware bent on evasion. |
Malware
Threat
|
|
★★
|
|
2023-03-20 20:23:00 |
Mirai Hackers Use Golang to Create a Bigger, Badder DDoS Botnet (lien direct) |
Avec Hinatabot, les auteurs de logiciels malveillants ont créé une bête plusieurs fois plus efficace que même les botnets les plus effrayants de l'ancien, emballant plus de 3 tbit / s de vitesses DDOS.
With HinataBot, malware authors have created a beast many times more efficient than even the scariest botnets of old, packing more than 3Tbit/s DDoS speeds. |
Malware
|
|
★★
|
|
2023-03-15 16:30:00 |
GoatRAT Android Banking Trojan Targets Mobile Automated Payment System (lien direct) |
The new malware was discovered targeting three banks in Brazil. |
Malware
|
|
★★★
|
|
2023-03-14 15:54:30 |
Emotet, QSnatch Malware Dominate Malicious DNS Traffic (lien direct) |
An analysis of trillions of DNS requests shows a shocking amount of malicious traffic inside enterprise networks, with threats using DNS as a sort of malicious Autobahn. |
Malware
|
|
★★★★
|
|
2023-03-13 21:52:00 |
200-300% Increase in AI-Generated YouTube Videos to Spread Stealer Malware (lien direct) |
An analysis of trillions of DNS requests shows a shocking amount of malicious traffic inside enterprise networks, with threats using DNS as a sort of malicious Autobahn. |
Malware
|
|
★★★
|
|
2023-03-13 18:38:00 |
Hike in AI-Created YouTube Videos Loaded With Malware (lien direct) |
AI-generated videos pose as tutorials on how to get cracked versions of Photoshop, Premiere Pro, and more. |
Malware
|
|
★★
|
|
2023-03-10 21:01:30 |
BlackLotus Secure Boot Bypass Malware Set to Ramp Up (lien direct) |
BlackLotus is the first in-the-wild malware to exploit a vulnerability in the Secure Boot process on Windows, and experts expect copycats and imminent increased activity. |
Malware
Vulnerability
|
|
★★★
|
|
2023-03-08 20:14:00 |
40% of Global ICS Systems Attacked With Malware in 2022 (lien direct) |
Led by growth in Russia, more than 40% of global ICS systems faced malicious activity in the second half of 2022. |
Malware
|
|
★★
|
|
2023-03-08 16:50:40 |
AI-Powered \'BlackMamba\' Keylogging Attack Evades Modern EDR Security (lien direct) |
Researchers warn that polymorphic malware created with ChatGPT and other LLMs will force a reinvention of security automation. |
Malware
|
ChatGPT
ChatGPT
|
★★
|
|
2023-03-07 20:40:24 |
Hiatus Campaign Infects DrayTek Gear for Cyber Espionage, Proxy Control (lien direct) |
Two novel malware binaries, including "HiatusRAT," offer unique capabilities that point to the need for better security for companies' router infrastructure. |
Malware
|
|
★★
|
|
2023-03-01 19:34:00 |
Linux Support Expands Cyber Spy Group\'s Arsenal (lien direct) |
An infamous Chinese cyber-hacking team has extended its SysUpdate malware framework to target Linux systems. |
Malware
|
|
★★★
|
|
2023-02-28 18:55:00 |
WannaCry Hero & Kronos Malware Author Named Cybrary Fellow (lien direct) |
Marcus Hutchins, who set up a "kill switch" that stopped WannaCry's spread, later pled guilty to creating the infamous Kronos banking malware. |
Malware
|
Wannacry
Wannacry
|
★★★
|
|
2023-02-27 18:30:46 |
Mobile Banking Trojans Surge, Doubling in Volume (lien direct) |
Mobile malware developers were busy bees in 2022, flooding the cybercrime landscape with twice the number of banking trojans than the year before. |
Malware
|
|
★★★
|
|
2023-02-23 21:54:44 |
Pirated Final Cut Pro for macOS Offers Stealth Malware Delivery (lien direct) |
The number of people who have made the weaponized software available for sharing via torrent suggests that many unsuspecting victims may have downloaded the XMRig coin miner. |
Malware
|
|
★★
|
|
2023-02-23 19:54:00 |
Hydrochasma Threat Group Bombards Targets with Slew of Commodity Malware, Tools (lien direct) |
A previously unidentified threat group uses open source malware and phishing to conduct cyber-espionage on shipping and medical labs associated with COVID-19 treatments and vaccines. |
Malware
Threat
Medical
|
|
★★★
|
|
2023-02-23 18:50:35 |
Wiper Malware Surges Ahead, Spiking 53% in 3 Months (lien direct) |
Cybercriminals and hacktivists have joined state-backed actors in using sabotage-bent malware in destructive attacks, new report shows. |
Malware
|
|
★★
|
|
2023-02-08 22:31:00 |
CISA Releases Recovery Script for Victims of ESXiArgs Ransomware (lien direct) |
The malware has affected thousands of VMware ESXi hypervisors in the last few days. |
Ransomware
Malware
|
|
★★★
|
|
2023-02-07 19:18:00 |
New Banking Trojan Targeting 100M Pix Payment Platform Accounts (lien direct) |
New malware demonstrates how threat actors are pivoting toward payment platform attacks, researchers say. |
Malware
Threat
|
|
★★★
|
|
2023-02-06 22:11:00 |
Global Ransomware Attack on VMware EXSi Hypervisors Continues to Spread (lien direct) |
The fresh "ESXiArgs" malware is exploiting a 2-year-old RCE security vulnerability (tracked as CVE-2021-21974), resulting in thousands of unpatched servers falling prey to the campaign. |
Ransomware
Malware
Vulnerability
|
|
★★
|
|
2023-02-03 16:00:00 |
Scores of Redis Servers Infested by Sophisticated Custom-Built Malware (lien direct) |
At least 1,200 Redis servers worldwide have been infected with "HeadCrab" cryptominers since 2021. |
Malware
|
|
★
|
|
2023-02-01 02:05:00 |
How Can Disrupting DNS Communications Thwart a Malware Attack? (lien direct) |
Malware eventually has to exfiltrate the data it accessed. By watching DNS traffic for suspicious activity, organizations can halt the damage. |
Malware
|
|
★★★
|
|
2023-01-19 21:30:00 |
Attackers Crafted Custom Malware for Fortinet Zero-Day (lien direct) |
The "BoldMove" backdoor demonstrates a high level of knowledge of FortiOS, according to Mandiant researchers, who said the attacker appears to be based out of China. |
Malware
|
|
★★
|
|
2023-01-18 19:21:00 |
ChatGPT Could Create Polymorphic Malware Wave, Researchers Warn (lien direct) |
The powerful AI bot can produce malware without malicious code, making it tough to mitigate. |
Malware
|
ChatGPT
|
★★★
|
|
2023-01-18 17:10:00 |
ICS Confronted by Attackers Armed With New Motives, Tactics, and Malware (lien direct) |
Threat actors are diversifying across all aspects to attack critical infrastructure, muddying the threat landscape, and forcing industrial organizations to rethink their security. |
Malware
Threat
Industrial
|
|
★★
|
|
2023-01-13 20:00:00 |
Malware Comes Standard With This Android TV Box on Amazon (lien direct) |
The bargain T95 Android TV device was delivered with preinstalled malware, adding to a trend of Droid devices coming out-of-the-box tainted. |
Malware
Prediction
|
|
★★★★
|
|
2023-01-12 22:20:00 |
Researchers Find \'Digital Crime Haven\' While Investigating Magecart Activity (lien direct) |
A security vendor's investigation of infrastructure associated with a new, crypto-focused Magecart skimmer leads to discovery of cryptoscam sites, malware distribution marketplace, Bitcoin mixers, and more. |
Malware
Guideline
|
|
★★★
|
|
2023-01-12 19:11:00 |
Critical Cisco SMB Router Flaw Allows Authentication Bypass, PoC Available (lien direct) |
Unpatched Cisco bugs, tracked as CVE-2023-20025 and CVE-2023-20026, allow lateral movement, data theft, and malware infestations. |
Malware
|
|
★★
|
|
2023-01-10 15:04:00 |
Netskope Threat Research: Malware-Delivering Cloud Apps Nearly Tripled in 2022 (lien direct) |
401 distinct cloud apps shown to deliver malware; Microsoft OneDrive delivered 30% of all cloud malware downloads. |
Malware
Threat
|
|
★★★
|
|
2023-01-06 18:46:00 |
PurpleUrchin Gang Embraces DevOps In Massive Cloud Malware Campaign (lien direct) |
The Automated Libra group is deploying all components of its campaign in an automated manner via containers, stealing free trial resources for cryptomining, but the threat could get larger. |
Malware
Threat
|
|
★★★
|
|
2023-01-05 18:02:00 |
Bluebottle Continues Bank Heist Assault With Signed Malware (lien direct) |
The financially motivated threat group, also known as OPERA1ER, demonstrated an evolution in tactics in its compromise of three Francophone financial institutions in Africa, likely adding to its $11 million to-date haul. |
Malware
Threat
|
|
★★★
|
|
2023-01-04 15:46:00 |
BitRat Malware Gnaws at Victims With Bank Heist Data (lien direct) |
Attackers have compromised a Colombian financial institution and are using a bevy of leaked customer details in further malicious activity to spread an info-gathering remote access Trojan (RAT). |
Malware
|
|
★★★
|
|
2023-01-03 19:03:00 |
WordPress Sites Under Attack from Newly Found Linux Trojan (lien direct) |
Researchers who discovered the backdoor Linux malware say it may have been around for more than three years - and it targets 30+ plugin bugs. |
Malware
|
|
★★
|
|
2023-01-03 16:55:17 |
Raspberry Robin Worm Hatches a Highly Complex Upgrade (lien direct) |
The Evil Corp-linked malware family has undergone an evolution, becoming more obfuscated and "several times more complex," as the group behind it tests how far the worm can be spread. |
Malware
|
|
★★★
|
|
2022-12-21 15:03:30 |
Godfather Banking Trojan Masquerades as Legitimate Google Play App (lien direct) |
The malware has resurfaced, using an icon and name similar to the legitimate Google Play app MYT Music, a popular app with more than 10 million downloads. |
Malware
|
|
★★★
|
|
2022-12-19 21:28:00 |
Sophisticated DarkTortilla Malware Serves Imposter Cisco, Grammarly Pages (lien direct) |
Sites spoofing Grammarly and a Cisco webpage are spreading the DarkTortilla threat, which is filled with follow-on malware attacks. |
Malware
|
|
★★
|
|
2022-12-16 16:00:03 |
Chinese APT Group MirrorFace Interferes in Japanese Elections (lien direct) |
The MirrorFace group has deployed popular malware LodeInfo for spying and data theft against certain members of the Japanese House of Representatives. |
Malware
|
|
★★★
|
|
2022-12-16 14:00:00 |
Live From London: Next-Gen Cybersecurity Takes Stage at Black Hat Europe (lien direct) |
Check out our slideshow detailing the emerging cybersecurity trends in cloud, creating a defensible Internet, malware evolution, and more that lit up audiences in London. |
Malware
|
|
★★
|
|
2022-12-15 16:20:20 |
Blackmailing MoneyMonger Malware Hides in Flutter Mobile Apps (lien direct) |
Money-lending apps built using the Flutter software development kit hide a predatory spyware threat and highlight a growing trend of using personal data for blackmail. |
Malware
Threat
Prediction
|
|
★★★
|
|
2022-10-10 20:35:32 |
Emotet Rises Again With More Sophistication, Evasion (lien direct) |
An analysis of the malware and its infection strategies finds nearly 21,000 minor and 139 major variations on the malware - complexity that helps it dodge analysis. |
Malware
|
|
|
|
2022-10-06 15:15:20 |
Russia-Linked Cybercrime Group Hawks Combo of Malicious Services With LilithBot (lien direct) |
The malware-as-a-service group Eternity is selling a one-stop shop for various malware modules it's been distributing individually via a subscription model on Telegram. |
Malware
|
|
|
|
2022-10-05 13:01:39 |
RatMilad Spyware Scurries onto Enterprise Android Phones (lien direct) |
A novel mobile malware found lurking behind a phone-spoofing app is being distributed via Telegram and a dedicated website, in a broad operation to monitor corporate victims. |
Malware
|
|
|
|
2022-10-03 20:56:00 |
Bumblebee Malware Loader\'s Payloads Significantly Vary by Victim System (lien direct) |
On some systems the malware drops infostealers and banking Trojans; on others it installs sophisticated post-compromise tools, new analysis shows. |
Malware
|
|
★★
|
|
2022-09-28 20:59:09 |
Sophisticated Covert Cyberattack Campaign Targets Military Contractors (lien direct) |
Malware used in the STEEP#MAVERICK campaign features rarely seen obfuscation, anti-analysis, and evasion capabilities. |
Malware
|
|
|
|
2022-09-28 16:12:09 |
Chaos Malware Resurfaces With All-New DDoS & Cryptomining Modules (lien direct) |
The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys. |
Ransomware
Malware
|
|
|
|
2022-09-20 20:33:17 |
ChromeLoader Malware Evolves into Prevalent, More Dangerous Cyber Threat (lien direct) |
Microsoft and VMware are warning that the malware, which first surfaced as a browser-hijacking credential stealer, is now being used to drop ransomware, steal data, and crash systems at enterprises. |
Malware
Threat
|
|
|
|
2022-09-07 15:53:37 |
Next-Gen Linux Malware Takes Over Devices With Unique Tool Set (lien direct) |
The Shikitega malware takes over IoT and endpoint devices, exploits vulnerabilities, uses advanced encoding, abuses cloud services for C2, installs a cryptominer, and allows full remote control. |
Malware
Tool
|
|
|
|
2022-09-06 20:16:44 |
TeslaGun Primed to Blast a New Wave of Backdoor Cyberattacks (lien direct) |
What under-the-hood details of newly discovered attack control panel tells us about how the Evil Corp threat group manages its ServHelper backdoor malware campaigns. |
Malware
Threat
|
|
|
|
2022-09-02 16:52:51 |
Raspberry Robin Malware Connected to Russian Evil Corp Gang (lien direct) |
Infections attributed to the USB-based worm have taken off, and now evidence links the malware to Dridex and the sanctioned Russian cybercriminal group Evil Corp. |
Malware
|
|
|
|
2022-09-01 14:45:27 |
Apple Quietly Releases Another Patch for Zero-Day RCE Bug (lien direct) |
Apple continues a staged update process to address a WebKit vulnerability that allows attackers to craft malicious Web content to load malware on affected devices. |
Malware
Vulnerability
|
|
|