What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-07-21 06:20:41 | XLoader malware steals logins from macOS and Windows systems (lien direct) | A highly popular malware for stealing information from Windows systems has been modified into a new strain called XLoader, which can also target macOS systems. [...] | Malware | ||
|
2021-07-20 04:00:00 | New MosaicLoader malware targets software pirates via online ads (lien direct) | An ongoing worldwide campaign is pushing new malware dubbed MosaicLoader advertising camouflaged as cracked software via search engine results to infect wannabe software pirates' systems. [...] | Malware | ||
|
2021-07-14 15:29:17 | BazarBackdoor sneaks in through nested RAR and ZIP archives (lien direct) | Security researchers caught a new phishing campaign that tried to deliver the BazarBackdoor malware by using the multi-compression technique and masking it as an image file. [...] | Malware | ||
|
2021-07-14 03:32:00 | Trickbot updates its VNC module for high-value targets (lien direct) | The Trickbot botnet malware that often distributes various ransomware strains, continues to be the most prevalent threat as its developers update the VNC module used for remote control over infected systems. [...] | Ransomware Malware Threat | ||
|
2021-07-13 03:29:00 | New BIOPASS malware live streams victim\'s computer screen (lien direct) | Hackers compromised gambling sites to deliver a new remote access trojan (RAT) called BIOPASS that enables watching the victim's computer screen in real time by abusing popular live-streaming software. [...] | Malware | ||
|
2021-06-29 13:48:21 | Russian hackers had months-long access to Denmark\'s central bank (lien direct) | Russian state hackers compromised Denmark's central bank (Danmarks Nationalbank) and planted malware that gave them access to the network for more than half a year without being detected. [...] | Malware | ★★★★ | |
|
2021-06-26 05:16:04 | Microsoft admits to signing rootkit malware in supply-chain fiasco (lien direct) | Microsoft has now confirmed signing a malicious driver being distributed within gaming environments. This driver, called "Netfilter," is in fact a rootkit that was observed communicating with Chinese command-and-control IPs. [...] | Malware | ||
|
2021-06-23 09:00:00 | PYSA ransomware backdoors education orgs using ChaChi malware (lien direct) | The PYSA ransomware gang has been using a remote access Trojan (RAT) dubbed ChaChi to backdoor the systems of healthcare and education organizations and steal data that later gets leveraged in double extortion ransom schemes. [...] | Ransomware Malware | ||
|
2021-06-17 11:58:44 | Vigilante malware blocks victims from downloading pirated software (lien direct) | A vigilante developer turns the tables on software pirates by distributing malware that prevents them from accessing pirated software sites in the future. [...] | Malware | ||
|
2021-06-16 12:22:19 | US convicts Russian national behind Kelihos botnet crypting service (lien direct) | Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypter service used by the Kelihos botnet to obfuscate malware payloads and evade detection. [...] | Malware | ||
|
2021-06-15 08:00:28 | Google Workspace adds new phishing protection, client-side encryption (lien direct) | Google Workspace (formerly G Suite) has been updated with client-side encryption and new Google Drive phishing and malware content protection. [...] | Malware | ||
|
2021-06-14 12:30:18 | Microsoft: SEO poisoning used to backdoor targets with malware (lien direct) | Microsoft is tracking a series of attacks that use SEO poisoning to infect targets with a remote access trojan (RAT) capable of stealing the victims' sensitive info and backdooring their systems. [...] | Malware | ||
|
2021-06-07 06:51:59 | New Kubernetes malware backdoors clusters via Windows containers (lien direct) | New malware active for more than a year is compromising Windows containers to compromise Kubernetes clusters with the end goal of backdooring them and paving the way for attackers to abuse them in other malicious activities. [...] | Malware | Uber | |
|
2021-06-05 12:56:17 | GitHub\'s new policies allow removal of PoC exploits used in attacks (lien direct) | GitHub announced on Friday their updated community guidelines that explain how the company will deal with exploits and malware samples hosted on their service. [...] | Malware | ||
|
2021-06-04 17:28:07 | US charges Latvian for helping develop the Trickbot malware (lien direct) | The US Department of Justice announced today that a Latvian national was charged for her alleged role as a malware developer in the Trickbot transnational cybercrime organization. [...] | Malware | ||
|
2021-06-04 09:03:59 | FreakOut malware worms its way into vulnerable VMware servers (lien direct) | A multi-platform Python-based malware targeting Windows and Linux devices has now been upgraded to worm its way into Internet-exposed VMware vCenter servers unpatched against a remote code execution vulnerability. [...] | Malware | ||
|
2021-06-03 11:19:32 | New SkinnyBoy malware used by Russian hackers to breach sensitive orgs (lien direct) | Security researchers have discovered a new piece of malware called SkinnyBoy that was used in spear-phishing campaigns attributed to Russian-speaking hacking group APT28. [...] | Malware | APT 28 | |
|
2021-06-01 16:56:57 | US seizes domains used by APT29 in recent USAID phishing attacks (lien direct) | The US Department of Justice has seized two Internet domains used in recent phishing attacks impersonating the U.S. Agency for International Development (USAID) to distribute malware and gain access to internal networks. [...] | Malware | APT 29 | ★★★ |
|
2021-05-29 13:49:01 | Microsoft: Russian hackers used 4 new malware in USAID phishing (lien direct) | Microsoft states that a Russian hacking group used four new malware families in recent phishing attacks impersonating the United States Agency for International Development (USAID). [...] | Malware | ||
|
2021-05-28 12:12:21 | Chinese cyberspies are targeting US, EU orgs with new malware (lien direct) | Chinese threat groups continue to deploy new malware strains on the compromised network of dozens of US and EU organizations after exploiting vulnerable Pulse Secure VPN appliances. [...] | Malware Threat | ||
|
2021-05-27 13:37:01 | (Déjà vu) New BazaFlix attack pushes BazarLoader malware via fake movie site (lien direct) | Security researchers found a new BazarCall email phishing campaign that manages to bypass automated threat detection systems to deliver the BazarLoader malware used by the TrickBot gang. [...] | Malware Threat | ||
|
2021-05-27 13:37:01 | New BazaFlix phishing delivers BazarLoader malware via call center (lien direct) | Security researchers found a new BazarCall email phishing campaign that manages to bypass automated threat detection systems to deliver the BazarLoader malware used by the TrickBot gang. [...] | Malware Threat | ||
|
2021-05-24 15:40:31 | (Déjà vu) Apple fixes three zero-days, one abused by XCSSET macOS malware (lien direct) | Apple has released security updates to patch three macOS and tvOS zero-day vulnerabilities attackers exploited in the wild, with the former being abused by the XCSSET malware to bypass macOS privacy protections. [...] | Malware | ||
|
2021-05-22 11:02:22 | (Déjà vu) Bizarro banking malware targets 70 banks in Europe and South America (lien direct) | A banking trojan named Bizarro that originates from Brazil has crossed the borders and started to target customers of 70 banks in Europe and South America. [...] | Malware | ||
|
2021-05-20 13:13:08 | Microsoft: Massive malware campaign delivers fake ransomware (lien direct) | A massive malware campaign pushed the Java-based STRRAT remote access trojan (RAT), known for its data theft capabilities and the ability to fake ransomware attacks. [...] | Ransomware Malware | ||
|
2021-05-17 18:13:53 | Conti ransomware also targeted Ireland\'s Department of Health (lien direct) | The Conti ransomware gang failed to encrypt the systems of Ireland's Department of Health (DoH) despite breaching its network and dropping Cobalt Strike beacons to deploy their malware across the network. [...] | Ransomware Malware | ||
|
2021-05-17 15:01:35 | FBI spots spear-phishing posing as Truist Bank bank to deliver malware (lien direct) | Threat actors impersonated Truist, the sixth-largest U.S. bank holding company, in a spear-phishing campaign attempting to infect recipients with what looks like remote access trojan (RAT) malware. [...] | Malware Threat | ||
|
2021-05-13 13:00:00 | (Déjà vu) Microsoft build tool abused to deliver password-stealing malware (lien direct) | Threat actors are abusing the Microsoft Build Engine (MSBuild) to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. [...] | Malware Tool Threat | ||
|
2021-05-13 13:00:00 | Attackers abuse Microsoft dev tool to deploy Windows malware (lien direct) | Threat actors are abusing the Microsoft Build Engine (MSBuild) to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. [...] | Malware Tool Threat | ||
|
2021-05-12 12:49:16 | Microsoft: Threat actors target aviation orgs with new malware (lien direct) | Microsoft warns of an ongoing spear-phishing campaign targeting aerospace and travel organizations with multiple remote access trojans (RATs) deployed using a new and stealthy malware loader. [...] | Malware Threat | ||
|
2021-05-07 05:00:00 | Cuba Ransomware partners with Hancitor for spam-fueled attacks (lien direct) | The Cuba Ransomware gang has teamed up with the spam operators of the Hancitor malware to gain easier access to compromised corporate networks. [...] | Ransomware Spam Malware | ||
|
2021-05-04 10:00:00 | Worldwide phishing attacks deliver three new malware strains (lien direct) | A global-scale phishing campaign targeted worldwide organizations across a large array of industries with never-before-seen malware strains delivered via specially-tailored lures. [...] | Malware | ||
|
2021-05-04 09:00:00 | New Windows \'Pingback\' malware uses ICMP for covert communication (lien direct) | Today, Trustwave researchers have disclosed their findings on a novel Windows malware sample that uses Internet Control Message Protocol (ICMP) for its command-and-control (C2) activities. Dubbed "Pingback," this malware targets Windows 64-bit systems, and uses DLL Hijacking to gain persistence. [...] | Malware | ||
|
2021-04-30 10:09:32 | Suspected Chinese state hackers target Russian submarine designer (lien direct) | Hackers suspected to work for the Chinese government have used a new malware called PortDoor to infiltrate the systems of an engineering company that designs submarines for the Russian Navy. [...] | Malware | ||
|
2021-04-29 13:54:33 | Babuk ransomware readies \'shut down\' post, plans to open source malware (lien direct) | After just a few months of activity, the operators of Babuk ransomware briefly posted a short message about their intention to quit the extortion business after having achieved their goal. [...] | Ransomware Malware | ||
|
2021-04-28 12:29:58 | New stealthy Linux malware used to backdoor systems for years (lien direct) | A recently discovered Linux malware with backdoor capabilities has flown under the radar for years, allowing attackers to harvest and exfiltrate sensitive information from compromised devices. [...] | Malware | ||
|
2021-04-28 10:38:11 | Passwordstate hackers phish for more victims with updated malware (lien direct) | Click Studios, the software company behind the Passwordstate enterprise password manager, is warning customers of ongoing phishing attacks targeting them with updated Moserpass malware. [...] | Malware | ||
|
2021-04-27 12:18:57 | FBI shares 4 million email addresses used by Emotet with Have I Been Pwned (lien direct) | Millions of email addresses collected by Emotet botnet for malware distribution campaigns have been shared by the Federal Bureau of Investigation (FBI) as part of the agency's effort to clean infected computers. [...] | Malware | ||
|
2021-04-26 15:21:46 | Apple fixes macOS zero-day bug exploited by Shlayer malware (lien direct) | Apple has fixed a zero-day vulnerability in macOS exploited in the wild by Shlayer malware to bypass Apple's File Quarantine, Gatekeeper, and Notarization security checks and download second-stage malicious payloads. [...] | Malware Vulnerability | ||
|
2021-04-26 12:54:01 | Microsoft Defender now blocks cryptojacking malware using Intel TDT (lien direct) | Microsoft today announced that Microsoft Defender for Endpoint, the enterprise version of its Windows 10 Defender antivirus, now comes with support for blocking cryptojacking malware using Intel's silicon-based Threat Detection Technology (TDT). [...] | Malware Threat | ||
|
2021-04-25 03:16:00 | (Déjà vu) Emotet malware nukes itself today from all infected computers worldwide (lien direct) | Emotet, one of the most dangerous email spam botnets in recent history, is being uninstalled today from all infected devices with the help of a malware module delivered in January by law enforcement. [...] | Malware | ||
|
2021-04-25 03:16:00 | Emotet malware forcibly removed today by German police update (lien direct) | Emotet, one of the most dangerous email spam botnets in recent history, is being uninstalled today from all infected devices with the help of a malware module delivered in January by law enforcement. [...] | Malware | ||
|
2021-04-24 10:36:12 | New cryptomining malware builds an army of Windows, Linux bots (lien direct) | A recently discovered cryptomining botnet is actively scanning for vulnerable Windows and Linux enterprise servers and infecting them with Monero (XMRig) miner and self-spreader malware payloads. [...] | Malware | ||
|
2021-04-24 09:47:12 | Fake Microsoft DirectX 12 site pushes crypto-stealing malware (lien direct) | Cybercriminals have created a fake Microsoft DirectX 12 download page to distribute malware that steals your cryptocurrency wallets and passwords. [...] | Malware | ||
|
2021-04-23 16:18:42 | Passwordstate password manager hacked in supply chain attack (lien direct) | ClickStudios, the company behind the Passwordstate password manager, notified customers that attackers compromised the app's update mechanism to deliver malware in a supply-chain attack after breaching its networks. [...] | Malware | ||
|
2021-04-23 12:25:21 | Phishing impersonates global recruitment firm to push malware (lien direct) | An ongoing phishing campaign is impersonating Michael Page consultants to push Ursnif data-stealing malware capable of harvesting credentials and sensitive data from infected computers. [...] | Malware | ||
|
2021-04-21 10:33:03 | WhatsApp Pink malware can now auto-reply to your Signal, Telegram texts (lien direct) | WhatsApp malware dubbed WhatsApp Pink has now been updated with advanced capabilities that let this counterfeit Android app automatically respond to your Signal, Telegram, Viber, and Skype messages. WhatsApp Pink refers to a counterfeit app that appeared this week, primarily targeting WhatsApp users in the Indian subcontinent. [...] | Malware | ||
|
2021-04-20 10:37:52 | Fake Microsoft Store, Spotify sites spread info-stealing malware (lien direct) | Attackers are promoting sites impersonating the Microsoft Store, Spotify, and an online document converter that distribute malware to steal credit cards and passwords saved in web browsers. [...] | Malware | ||
|
2021-04-19 17:07:40 | Google Alerts continues to be a hotbed of scams and malware (lien direct) | Google Alerts continues to be a hotbed of scams and malware that threat actors are increasingly abusing to promote malicious websites. [...] | Malware Threat | ||
|
2021-04-16 03:41:14 | HackBoss malware poses as hacker tools on Telegram to steal digital coins (lien direct) | The authors of a cryptocurrency-stealing malware are distributing it over Telegram to aspiring cybercriminals under the guise of free malicious applications. [...] | Malware |
To see everything:
Our RSS (filtrered)
