Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-03-19 15:21:45 |
Bogus Android Clubhouse App Drops Credential-Swiping Malware (lien direct) |
The malicious app spreads the BlackRock malware, which steals credentials from 458 services - including Twitter, WhatsApp, Facebook and Amazon. |
Malware
|
|
|
|
2021-03-19 14:52:21 |
CopperStealer Malware Targets Facebook and Instagram Business Accounts (lien direct) |
A previously undocumented password and cookie stealer has been compromising accounts of big guns like Facebook, Apple, Amazon and Google since 2019 and then using them for cybercriminal activity. |
Malware
|
|
|
|
2021-03-18 19:42:21 |
Trojanized Xcode Project Slips MacOS Malware to Apple Developers (lien direct) |
In a new campaign, threat actors are bundling macOS malware in trojanized Apple Xcode developer projects. |
Malware
Threat
|
|
|
|
2021-03-17 17:04:27 |
$4,000 COVID-19 \'Relief Checks\' Cloak Dridex Malware (lien direct) |
The American Rescue Act is the latest zeitgeisty lure being circulated in an email campaign. |
Malware
|
|
|
|
2021-03-12 17:21:22 |
Metamorfo Banking Trojan Abuses AutoHotKey to Avoid Detection (lien direct) |
A legitimate binary for creating shortcut keys in Windows is being used to help the malware sneak past defenses, in a rash of new campaigns. |
Malware
|
|
|
|
2021-03-11 16:54:12 |
Linux Systems Under Attack By New RedXOR Malware (lien direct) |
Researchers say the new RedXOR backdoor is targeting Linux systems with various data exfiltration and network traffic tunneling capabilities. |
Malware
|
|
|
|
2021-03-11 16:05:27 |
FIN8 Resurfaces with Revamped Backdoor Malware (lien direct) |
The financial cyber-gang is running limited attacks ahead of broader offensives on point-of-sale systems. |
Malware
|
|
|
|
2021-03-10 16:40:12 |
Nim-Based Malware Loader Spreads Via Spear-Phishing Emails (lien direct) |
Spear-phishing emails are spreading the NimzaLoader malware loader, which some say may be used to download Cobalt Strike. |
Malware
|
|
|
|
2021-03-09 16:44:11 |
Google Play Harbors Malware-Laced Apps Delivering Spy Trojans (lien direct) |
A never-before-seen malware-dropper, Clast82, fetches the AlienBot and MRAT malware in a savvy Google Play campaign aimed at Android users. |
Malware
|
|
|
|
2021-03-05 20:35:57 |
WordPress Injection Anchors Widespread Malware Campaign (lien direct) |
Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible. |
Malware
|
|
|
|
2021-03-05 15:55:41 |
D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant (lien direct) |
A new variant of the Gafgyt botnet - that's actively targeting vulnerable D-Link and Internet of Things devices - is the first variant of the malware to rely on Tor communications, researchers say. |
Malware
|
|
|
|
2021-03-04 22:19:15 |
Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers (lien direct) |
Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack. |
Malware
Threat
|
|
|
|
2021-03-04 16:01:15 |
COVID-19 Vaccine Spear-Phishing Attacks Jump 26 Percent (lien direct) |
Cybercriminals are using the COVID-19 vaccine to steal Microsoft credentials, infect systems with malware and bilk victims out of hundreds of dollars. |
Malware
|
|
|
|
2021-03-02 17:06:51 |
Compromised Website Images Camouflage ObliqueRAT Malware (lien direct) |
Emails spreading the ObliqueRAT malware now make use of steganography, disguising their payloads on compromised websites. |
Malware
|
|
|
|
2021-03-01 21:23:42 |
Malware Loader Abuses Google SEO to Expand Payload Delivery (lien direct) |
Gootloader has expanded its payloads beyond the Gootkit malware family, using Google SEO poisoning to gain traction. |
Malware
|
|
|
|
2021-02-26 19:56:39 |
Lazarus Targets Defense Companies with ThreatNeedle Malware (lien direct) |
A spear-phishing campaigned linked to a North Korean APT uses “NukeSped” malware in cyberespionage attacks against defense companies. |
Malware
|
APT 38
|
|
|
2021-02-26 16:22:56 |
Malware Gangs Partner Up in Double-Punch Security Threat (lien direct) |
From TrickBot to Ryuk, more malware cybercriminal groups are putting their heads together when attacking businesses. |
Malware
Threat
|
|
|
|
2021-02-24 21:52:29 |
Tax Season Ushers in Quickbooks Data-Theft Spike (lien direct) |
Quickbooks malware targets tax data for attackers to sell and use in phishing scams. |
Malware
|
|
|
|
2021-02-19 19:33:14 |
Mysterious Silver Sparrow Malware Found Nesting on 30K Macs (lien direct) |
A second malware that targets Macs with Apple's in-house M1 chip is infecting machines worldwide -- but it's unclear why. |
Malware
|
|
|
|
2021-02-18 16:34:57 |
Mac Malware Targets Apple\'s In-House M1 Processor (lien direct) |
A malicious adware-distributing application specifically targets Apple's new M1 SoC, used in its newest-generation MacBook Air, MacBook Pro and Mac mini devices. |
Malware
|
|
|
|
2021-02-17 21:39:10 |
Windows, Linux Devices Hijacked In Two-Year Cryptojacking Campaign (lien direct) |
The WatchDog malware has flown under the radar for two years in what researchers call one of the 'largest' Monero cryptojacking attacks ever. |
Malware
|
|
|
|
2021-02-16 14:08:04 |
Unpatched Android App with 1 Billion Downloads Threatens Spying, Malware (lien direct) |
Attackers can exploit SHAREit permissions to execute malicious code through vulnerabilities that remain unpatched three months after app makers were informed. |
Malware
|
|
|
|
2021-02-11 21:32:47 |
Pre-Valentine\'s Day Malware Attack Mimics Flower, Lingerie Stores (lien direct) |
Emails pretending to confirm hefty orders from lingerie shop Ajour Lingerie and flower store Rose World are actually spreading the BazaLoader malware. |
Malware
|
|
|
|
2021-02-11 15:03:54 |
Various Malware Lurking in Discord App to Target Gamers (lien direct) |
Research from Zscaler ThreatLabZ shows attackers using spam emails and legitimate-looking links to gaming software to serve up Epsilon ransomware, the XMRrig cryptominer and various data and token stealers. |
Spam
Malware
|
|
|
|
2021-02-11 12:00:22 |
Military, Nuclear Entities Under Target By Novel Android Malware (lien direct) |
The two malware families have sophisticated capabilities to exfiltrate SMS messages, WhatsApp messaging content and geolocation. |
Malware
|
|
|
|
2021-02-09 15:47:03 |
Android Devices Hunted by LodaRAT Windows Malware (lien direct) |
The LodaRAT - known for targeting Windows devices - has been discovered also targeting Android devices in a new espionage campaign. |
Malware
|
|
|
|
2021-02-03 20:50:54 |
New Malware Hijacks Kubernetes Clusters to Mine Monero (lien direct) |
Researchers warn that the Hildegard malware is part of 'one of the most complicated attacks targeting Kubernetes.' |
Malware
|
Uber
|
|
|
2021-02-02 21:38:50 |
TrickBot Continues Resurgence with Port-Scanning Module (lien direct) |
The infamous malware has incorporated the legitimate Masscan tool, which looks for open TCP/IP ports with lightning-fast results. |
Malware
|
|
|
|
2021-02-02 17:37:56 |
Tiny Kobalos Malware Bedevils Supercomputers to Steal Logins (lien direct) |
The sophisticated backdoor steals SSH credentials for servers in academic and scientific high-performance computing clusters. |
Malware
|
|
|
|
2021-02-01 16:50:24 |
Alleged Gaming Software Supply-Chain Attack Installs Spyware (lien direct) |
Researchers allege that software used for downloading Android apps onto PCs and Macs has been compromised to install malware onto victim devices. |
Malware
|
|
|
|
2021-01-28 20:06:57 |
Rocke Group\'s Malware Now Has Worm Capabilities (lien direct) |
The Pro-Ocean cryptojacking malware now comes with the ability to spread like a worm, as well as harboring new detection-evasion tactics. |
Malware
|
APT 32
|
|
|
2021-01-27 21:43:22 |
TeamTNT Cloaks Malware With Open-Source Tool (lien direct) |
The detection-evasion tool, libprocesshider, hides TeamTNT's malware from process-information programs. |
Malware
Tool
|
|
|
|
2021-01-26 21:24:34 |
DanaBot Malware Roars Back into Relevancy (lien direct) |
Sophisticated and dangerous, DanaBot has resurfaced after laying dormant for seven months. |
Malware
|
|
|
|
2021-01-22 18:35:24 |
Discord-Stealing Malware Invades npm Packages (lien direct) |
The CursedGrabber malware has infiltrated the open-source software code repository. |
Malware
|
|
|
|
2021-01-21 19:42:41 |
SQL Server Malware Tied to Iranian Software Firm, Researchers Allege (lien direct) |
Researchers have traced the origins of a campaign - infecting SQL servers to mine cryptocurrency - back to an Iranian software firm. |
Malware
|
|
|
|
2021-01-19 16:40:55 |
SolarWinds Malware Arsenal Widens with Raindrop (lien direct) |
The post-compromise backdoor installs Cobalt Strike to help attackers more laterally through victim networks. |
Malware
|
Solardwinds
|
★★★
|
|
2021-01-19 15:51:30 |
Linux Devices Under Attack by New FreakOut Malware (lien direct) |
The FreakOut malware is adding infected Linux devices to a botnet, in order to launch DDoS and cryptomining attacks. |
Malware
|
|
|
|
2021-01-08 20:19:54 |
Ryuk Rakes in $150M in Ransom Payments (lien direct) |
An examination of the malware gang's payments reveals insights into its economic operations. |
Malware
|
|
|
|
2021-01-08 14:15:47 |
FBI Warns of Egregor Attacks on Businesses Worldwide (lien direct) |
The agency said the malware has already compromised more than 150 organizations and provided insight into its ransomware-as-a-service behavior. |
Malware
|
|
|
|
2021-01-05 15:00:21 |
ElectroRAT Drains Cryptocurrency Wallet Funds of Thousands (lien direct) |
At least 6,500 cryptocurrency users have been infected by new, 'extremely intrusive' malware that's spread via trojanized macOS, Windows and Linux apps. |
Malware
|
|
|
|
2020-12-17 19:17:49 |
RubyGems Packages Laced with Bitcoin-Stealing Malware (lien direct) |
Two malicious software building blocks that could be baked into web applications prey on unsuspecting users. |
Malware
|
|
|
|
2020-12-17 17:03:48 |
3M Users Targeted by Malicious Facebook, Insta Browser Add-Ons (lien direct) |
Researchers identify malware existing in popular add-ons for Facebook, Vimeo, Instagram and others that are commonly used in browsers from Google and Microsoft. |
Malware
|
|
|
|
2020-12-14 16:34:11 |
New Windows Trojan Steals Browser Credentials, Outlook Files (lien direct) |
The newly discovered Python-based malware family targets the Outlook processes, and browser credentials, of Microsoft Windows victims. |
Malware
|
|
|
|
2020-12-11 20:39:59 |
Adrozek Malware Delivers Fake Ads to 30K Devices a Day (lien direct) |
The Adrozek ad-injecting browser modifier malware also extracts device data and steals credentials, making it an even more dangerous threat. |
Malware
|
Adrozek
|
|
|
2020-12-11 19:41:40 |
PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers (lien direct) |
The malware takes aim at PostgreSQL database servers with never-before-seen techniques. |
Malware
|
|
|
|
2020-12-11 17:05:37 |
Facebook Shutters Accounts Used in APT32 Cyberattacks (lien direct) |
Facebook shut down accounts and Pages used by two separate threat groups to spread malware and conduct phishing attacks. |
Malware
Threat
|
APT 32
|
|
|
2020-12-09 16:40:43 |
COVID-19 Vaccine Cyberattacks Steal Credentials, Spread Zebrocy Malware (lien direct) |
Cybercriminals are leveraging the recent rollout of the COVID-19 vaccines globally in various cyberattacks - from stealing email passwords to distributing the Zebrocy malware. |
Malware
|
|
|
|
2020-12-07 21:30:02 |
Rana Android Malware Updates Allow WhatsApp, Telegram IM Snooping (lien direct) |
The developers behind the Android malware have a new variant that spies on instant messages in WhatsApp, Telegram, Skype and more. |
Malware
|
|
|
|
2020-12-04 19:23:35 |
Novel Online Shopping Malware Hides in Social-Media Buttons (lien direct) |
The skimmer steals credit-card data, using steganography to hide in plain sight in seemingly benign images. |
Malware
|
|
|
|
2020-12-03 17:20:02 |
DeathStalker APT Spices Things Up with PowerPepper Malware (lien direct) |
A raft of obfuscation techniques turn the heat up for the hacking-for-hire operation. |
Malware
|
|
|