Trellix, a cybersecurity firm, has unveiled a new sophisticated Java-based tool for information theft, employing a Discord bot to pilfer confidential data from compromised hosts. Named NS-STEALER, the malware disseminates via ZIP archives, masquerading...
According to researchers from Jamf Threat Labs, pirated applications for the macOS operating system distributed on Chinese websites are embedded with malicious software that grants attackers remote access to infected computers. Among these applications...
GitHub, a platform for programmers, is a popular and favorite tool for hackers, used to store and distribute malware. According to a recent report by Recorded Future, a cybersecurity company based in the United...
Trustwave has issued a warning regarding the notable surge in the exploitation of a patched vulnerability within Apache ActiveMQ, aimed at deploying the Godzilla web shell onto compromised hosts. The web shells, concealed in...
A new campaign targeting vulnerable Docker services is deploying the XMRig miner and the 9hits application, enabling a dual monetization strategy on compromised hosts. This marks the first documented instance of the 9Hits application...
In a recent report by Huntress, it was revealed that cybercriminals are once again employing TeamViewer, a legitimate remote access tool, for initial penetration into corporate devices and attempts to deploy ransomware. The first...
Pegasus is considered one of the most powerful spyware programs available today, with a far more comprehensive data-stealing capability than other spyware programs, including the ability to collect information on everything from high-value data...
According to a recent study by Zimperium, 29 malware families have targeted 1,800 banking apps in 61 countries in 2023. This is nearly 3 times more than in 2022 when 10 malware families targeted...
Specialists at Kaspersky Lab have shared their experience in analyzing iOS devices infected with the Pegasus spyware developed by the Israeli company NSO Group. It was found that malicious software leaves traces in the...
Malicious actors exploit vulnerabilities, known for several years, to deploy the Androxgh0st malware and create a botnet aimed at stealing cloud-based credentials. This has been reported by the Federal Bureau of Investigation (FBI) and...
Cybersecurity researchers have discovered a new macOS backdoor called SpectralBlur. Notably, this backdoor has similarities to the KandyKorn malware family used by North Korean hackers in recently identified cyberattacks. The SpectralBlur malware was originally...
A recently discovered vulnerability in Windows SmartScreen is being actively exploited in attacks that lead to the infection with the new Phemedrone stealer, warns Trend Micro. The vulnerability, CVE-2023-36025, scored 8.8 on the CVSS...
Security specialists at Sucuri have discovered a new campaign by Balada Injector, initiated in mid-December 2023. This campaign has led to the infection of over 6700 WordPress sites using a vulnerable version of the...
Popular mobile messaging apps such as WhatsApp, Signal, and Telegram have long been targets for cybercriminals. Scammers create and distribute malicious replicas of these applications, deceiving users with phishing campaigns on social media, email,...
Cybersecurity researchers have identified a new type of attack that exploits weaknesses in the configuration of Apache’s Hadoop and Flink software, deploying cryptocurrency miners on target systems. “This attack is particularly intriguing due to...
The National Cyber Security Centre of Finland (NCSC-FI) is issuing a warning about the increased activity of the Akira ransomware. According to the center, this past December witnessed hackers successfully carrying out six of...
