What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-02-09 12:39:25 | Hacker develops new \'Screenshotter\' malware to find high-value targets (lien direct) | A new threat actor tracked as TA886 targets organizations in the United States and Germany with new custom malware to perform surveillance and data theft on infected systems. [...] | Malware Threat | ★★ | |
|
2023-02-09 10:21:02 | U.S. and U.K. sanction TrickBot and Conti ransomware operation members (lien direct) | The United States and the United Kingdom have sanctioned seven Russian individuals for their involvement in the TrickBot cybercrime group, whose malware was used to support attacks by the Conti and Ryuk ransomware operation. [...] | Ransomware Malware | ★ | |
|
2023-02-08 13:09:54 | (Déjà vu) Malicious Dota 2 game mods infected players with malware (lien direct) | Security researchers have discovered four malicious Dota 2 game mods that were used by a threat actor to backdoor the players' systems. [...] | Malware Threat | ★★★ | |
|
2023-02-08 13:09:54 | Malicious Dota 2 game modes infected players with malware (lien direct) | Security researchers have discovered four malicious Dota 2 game modes that were used by a threat actor to backdoor the players' systems. [...] | Malware Threat | ★★★ | |
|
2023-02-08 13:00:00 | Android 14 to block malware from abusing sensitive permissions (lien direct) | Google has announced the release of the first developer preview for Android 14, the next major version of the world's most popular mobile operating system, which comes with security and privacy enhancements, among other things. [...] | Malware | ★★★★ | |
|
2023-02-08 06:00:00 | Russian hackers using new Graphiron information stealer in Ukraine (lien direct) | The Russian hacking group known as 'Nodaria' (UAC-0056) is using a new information-stealing malware called 'Graphiron' to steal data from Ukrainian organizations. [...] | Malware | ★★ | |
|
2023-02-07 17:21:02 | New QakNote attacks push QBot malware via Microsoft OneNote files (lien direct) | A new QBot malware campaign dubbed "QakNote" has been observed in the wild since last week, using malicious Microsoft OneNote' .one' attachments to infect systems with the banking trojan. [...] | Malware | ★★★ | |
|
2023-02-07 06:00:00 | Clop ransomware flaw allowed Linux victims to recover files for months (lien direct) | The Clop ransomware gang is now also using a malware variant that explicitly targets Linux servers, but a flaw in the encryption scheme has allowed victims to quietly recover their files for free for months. [...] | Ransomware Malware | ★★★ | |
|
2023-02-05 10:15:32 | Linux version of Royal Ransomware targets VMware ESXi servers (lien direct) | Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual machines. [...] | Ransomware Malware | ★★ | |
|
2023-02-02 19:04:42 | Google ads push \'virtualized\' malware made for antivirus evasion (lien direct) | An ongoing Google ads malvertising campaign is spreading malware installers that leverage KoiVM virtualization technology to evade detection when installing the Formbook data stealer. [...] | Malware | ★★ | |
|
2023-02-02 15:23:18 | Hackers weaponize Microsoft Visual Studio add-ins to push malware (lien direct) | Security researchers warn that hackers may start using Microsoft Visual Studio Tools for Office (VSTO) more often as method to achieve persistence and execute code on a target machine via malicious Office add-ins. [...] | Malware | ★★★★★ | |
|
2023-02-02 12:07:55 | Cisco fixes bug allowing malware persistence between reboots (lien direct) | Cisco has released security updates this week to address a high-severity vulnerability in the Cisco IOx application hosting environment that can be exploited in command injection attacks. [...] | Malware Vulnerability | ★★★ | |
|
2023-02-01 18:56:02 | New HeadCrab malware infects 1,200 Redis servers to mine Monero (lien direct) | New stealthy malware designed to hunt down vulnerable Redis servers online has infected over a thousand of them since September 2021 to build a botnet that mines for Monero cryptocurrency. [...] | Malware | ★★★ | |
|
2023-02-01 09:45:52 | Hackers use new IceBreaker malware to breach gaming companies (lien direct) | A previously unknown threat group has been targeting the customer service platforms of online gaming and gambling companies using social engineering to drop its custom implant. [...] | Malware Threat | ★★★ | |
|
2023-01-31 13:48:32 | PoS malware can block contactless payments to steal credit cards (lien direct) | New versions of the Prilex point-of-sale malware can block secure, NFC-enabled contactless credit card transactions, forcing consumers to insert credit cards that are then stolen by the malware. [...] | Malware | ★ | |
|
2023-01-28 10:21:32 | Hackers use new SwiftSlicer wiper to destroy Windows domains (lien direct) | Security researchers have identified a new data-wiping malware they named SwiftSlicer that aims to overwrite crucial files used by the Windows operating system. [...] | Malware | ★★ | |
|
2023-01-27 13:10:49 | Ukraine: Sandworm hackers hit news agency with 5 data wipers (lien direct) | The Ukrainian Computer Emergency Response Team (CERT-UA) found a cocktail of five different data-wiping malware strains deployed on the network of the country's national news agency (Ukrinform) on January 17th. [...] | Malware | ★★★ | |
|
2023-01-27 11:00:12 | PlugX malware hides on USB devices to infect new Windows hosts (lien direct) | Security researchers have analyzed a variant of the PlugX malware that can hide malicious files on removable USB devices and then infect the Windows hosts they connect to. [...] | Malware | ★★★ | |
|
2023-01-25 13:00:10 | Malware exploited critical Realtek SDK bug in millions of attacks (lien direct) | Hackers have leveraged a critical remote code execution vulnerability in Realtek Jungle SDK 134 million attacks trying to infect smart devices in the second half of 2022. [...] | Malware Vulnerability | ★★ | |
|
2023-01-25 09:53:14 | New stealthy Python RAT malware targets Windows in attacks (lien direct) | A new Python-based malware has been spotted in the wild featuring remote access trojan (RAT) capabilities to give its operators control over the breached systems. [...] | Malware | ★★ | |
|
2023-01-23 09:44:13 | Microsoft plans to kill malware delivery via Excel XLL add-ins (lien direct) | Microsoft is working on adding XLL add-in protection for Microsoft 365 customers by including automated blocking of all such files downloaded from the Internet. [...] | Malware | ★★ | |
|
2023-01-21 11:15:30 | (Déjà vu) Hackers now use Microsoft OneNote attachments to spread malware (lien direct) | Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] | Malware Threat | ★★★★★ | |
|
2023-01-21 11:15:30 | Beware: Hackers now use OneNote attachments to spread malware (lien direct) | Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] | Malware Threat | ★ | |
|
2023-01-20 11:02:16 | New Boldmove Linux malware used to backdoor Fortinet devices (lien direct) | Suspected Chinese hackers exploited a recently disclosed FortiOS SSL-VPN vulnerability as a zero-day in December, targeting a European government and an African MSP with a new custom 'BOLDMOVE' Linux and Windows malware. [...] | Malware Vulnerability | ★★★ | |
|
2023-01-19 18:30:22 | New \'Hook\' Android malware lets hackers remotely control your phone (lien direct) | A new Android malware named 'Hook' is being sold by cybercriminals, boasting it can remotely take over mobile devices in real-time using VNC (virtual network computing). [...] | Malware | ★★★ | |
|
2023-01-19 12:55:02 | Roaming Mantis\' Android malware adds DNS changer to hack WiFi routers (lien direct) | Starting in September 2022, the 'Roaming Mantis' credential theft and malware distribution campaign was observed using a new version of the Wroba.o/XLoader Android malware that incorporates a function for detecting specific WiFi routers and changing their DNS. [...] | Malware Hack | ★★ | |
|
2023-01-18 14:57:51 | Ukraine links data-wiping attack on news agency to Russian hackers (lien direct) | The Computer Emergency Response Team of Ukraine (CERT-UA) has linked a destructive malware attack targeting the country's National News Agency of Ukraine (Ukrinform) to Sandworm Russian military hackers. [...] | Malware | ★★★ | |
|
2023-01-17 18:09:38 | (Déjà vu) Hackers push malware via Google search ads for VLC, 7-Zip, CCleaner (lien direct) | Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] | Malware | CCleaner CCleaner | ★ |
|
2023-01-17 18:09:38 | Hackers turn to Google search ads to push info-stealing malware (lien direct) | Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] | Malware | ★★★ | |
|
2023-01-17 14:53:40 | Hackers can use GitHub Codespaces to host and deliver malware (lien direct) | GitHub Codespaces, a cloud-hosted integrated development environment (IDE), has a port forwarding feature that malicious actors can abuse to host and distribute malware to unaware developers. [...] | Malware | ★ | |
|
2023-01-16 11:41:30 | Malicious \'Lolip0p\' PyPi packages install info-stealing malware (lien direct) | A threat actor has uploaded to the PyPI (Python Package Index) repository three malicious packages that carry code to drop info-stealing malware on developers' systems. [...] | Malware Threat | ★★★ | |
|
2023-01-16 07:15:34 | Avast releases free BianLian ransomware decryptor (lien direct) | Security software company Avast has released a free decryptor for the BianLian ransomware strain to help victims of the malware recover locked files without paying the hackers. [...] | Ransomware Malware | ★★ | |
|
2023-01-14 17:28:34 | CircleCI\'s hack caused by malware stealing engineer\'s 2FA-backed session (lien direct) | Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing access to the company's internal systems. [...] | Malware Hack | ★★★★ | |
|
2023-01-12 17:24:02 | RAT malware campaign tries to evade detection using polyglot files (lien direct) | Operators of the StrRAT and Ratty remote access trojans (RAT) are running a new campaign using polyglot MSI/JAR and CAB/JAR files to evade detection from security tools. [...] | Malware | ★★★ | |
|
2023-01-12 15:41:56 | Android TV box on Amazon came pre-installed with malware (lien direct) | A Canadian system administrator discovered that an Android TV box purchased from Amazon was pre-loaded with persistent, sophisticated malware baked into its firmware. [...] | Malware | ★★★ | |
|
2023-01-11 12:24:19 | Gootkit malware abuses VLC to infect healthcare orgs with Cobalt Strike (lien direct) | The Gootkit loader malware operators are running a new SEO poisoning campaign that abuses VLC Media Player to infect Australian healthcare entities with Cobalt Strike beacons. [...] | Malware | ★★ | |
|
2023-01-11 02:00:00 | New Dark Pink APT group targets govt and military with custom malware (lien direct) | Attacks targeting government agencies and military bodies in multiple countries in the APAC region have been attributed to what appears to be a new advanced threat actor that leverages custom malware to steal confidential information. [...] | Malware Threat | ★★ | |
|
2023-01-10 18:05:01 | Over 1,300 fake AnyDesk sites push Vidar info-stealing malware (lien direct) | A massive campaign using over 1,300 domains to impersonate the official AnyDesk site is underway, all redirecting to a Dropbox folder recently pushing the Vidar information-stealing malware. [...] | Malware | ★★★★ | |
|
2023-01-09 16:16:26 | Microsoft: Kubernetes clusters hacked in malware campaign via PostgreSQL (lien direct) | The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers. [...] | Malware | Uber | ★★ |
|
2023-01-07 10:12:06 | Malicious PyPi packages create CloudFlare Tunnels to bypass firewalls (lien direct) | Six malicious packages on PyPI, the Python Package Index, were found installing information-stealing and RAT (remote access trojan) malware while using Cloudflare Tunnel to bypass firewall restrictions for remote access. [...] | Malware | ★★ | |
|
2023-01-05 10:17:25 | SpyNote Android malware infections surge after source code leak (lien direct) | The Android malware family tracked as SpyNote (or SpyMax) has had a sudden increase in detections in the final quarter of 2022, which is attributed to a source code leak of one of its latest, known as 'CypherRat.' [...] | Malware | ★★ | |
|
2023-01-04 17:29:46 | New SHC-compiled Linux malware installs cryptominers, DDoS bots (lien direct) | A new Linux malware downloader created using SHC (Shell Script Compiler) has been spotted in the wild, infecting systems with Monero cryptocurrency miners and DDoS IRC bots. [...] | Malware | ★★ | |
|
2023-01-04 12:16:37 | Hackers abuse Windows error reporting tool to deploy malware (lien direct) | Hackers are abusing the Windows Problem Reporting (WerFault.exe) error reporting tool for Windows to load malware into a compromised system's memory using a DLL sideloading technique. [...] | Malware Tool | ★★ | |
|
2023-01-03 13:10:01 | BitRAT malware campaign uses stolen bank data for phishing (lien direct) | Threat actors behind a recent malware campaign have been using the stolen information of bank customers in Colombia as lures in phishing emails designed to infect targets with the BitRAT remote access trojan, according to cloud security firm Qualys. [...] | Malware Threat | ★★ | |
|
2022-12-30 10:41:11 | New Linux malware uses 30 plugin exploits to backdoor WordPress sites (lien direct) | A previously unknown Linux malware has been exploiting 30 vulnerabilities in multiple outdated WordPress plugins and themes to inject malicious JavaScript. [...] | Malware | ★★★ | |
|
2022-12-28 14:12:16 | Hackers abuse Google Ads to spread malware in legit software (lien direct) | Malware operators have been increasingly abusing the Google Ads platform to spread malware to unsuspecting users searching for popular software products. [...] | Malware | ★★★ | |
|
2022-12-24 10:08:16 | New info-stealer malware infects software pirates via fake cracks sites (lien direct) | A new information-stealing malware named 'RisePro' is being distributed through fake cracks sites operated by the PrivateLoader pay-per-install (PPI) malware distribution service. [...] | Malware | ★★ | |
|
2022-12-21 16:47:58 | Corsair keyboard bug makes it type on its own, no malware involved (lien direct) | Corsair has confirmed that a bug in the firmware of K100 keyboards, and not malware, is behind previously entered text being auto-typed into applications days later. [...] | Malware | ★★★ | |
|
2022-12-21 16:10:36 | Zerobot malware now spreads by exploiting Apache vulnerabilities (lien direct) | The Zerobot botnet has been upgraded to infect new devices by exploiting security vulnerabilities affecting Internet-exposed and unpatched Apache servers. [...] | Malware | ★★★ | |
|
2022-12-21 03:00:00 | GodFather Android malware targets 400 banks, crypto exchanges (lien direct) | An Android banking malware named 'Godfather' has been targeting users in 16 countries, attempting to steal account credentials for over 400 online banking sites and cryptocurrency exchanges. [...] | Malware | ★★★ |
To see everything:
Our RSS (filtrered)
