06 May 2021

Panda Stealer Targets Crypto Wallets

A new information stealer referred too as Panda is targeting cryptocurrency wallets and credentials for applications such as Telegram, NordVPN, Discord, and Steam. The Panda stealer uses spam emails to trick victims and a difficult-to-detect fileless distribution method deployed by Phobos ransomware. The attacks are primarily targeting users in Australia,

Read More
26 Apr 2021

Prometei Botnet Could Fire Up APT-Style Attacks

The Prometei malware is allegedly using exploits for the Microsoft Exchange “ProxyLogon” security bugs, leveraging the exploits to install Monero-mining malware on targets. The operators behind Prometei are conducting copy-cat attacks similar to those of advanced persistent threat cyberattackers. The malware is exploiting two of the Microsoft vulnerabilities in order

Read More
08 Apr 2021

Attackers Blowing Up Discord, Slack with Malware

Slack and Discord, two workflow and collaboration tools, have been infiltrated by malicious actors abusing legitimate functions to evade security and deliver malware. The campaign seeks to drop information stealers, remote access Trojans, and other malware to users utilizing the platforms. The pandemic drove platforms like Slack and Discord to

Read More
07 Apr 2021

New wormable Android malware poses as Netflix to hijack WhatsApp sessions

A new variant of Android malware has been discovered by researchers at Check Point, who reported that the mobile malware was discovered in the Google Play Store. The wormable malware has been named FlixOnline and disguises itself as a legitimate Netflix brand application. The app then appears to target the

Read More
06 Apr 2021

LinkedIn Spear-Phishing Campaign Targets Job Hunters

A new campaign has been observed to target job hunters seeking opportunities via Linkedin. A threat group named Golden Chickens is allegedly behind the campaign, which creates fake job offers to lure professionals into downloading a backdoor Trojan called more_eggs. The spear-phishing campaign was discovered by researchers at eSentire. The

Read More
06 Apr 2021

Meet Janeleiro, a new banking Trojan striking company, government targets

A new Brazilian banking Trojan has emerged, targeting government entities. The malware has allegedly been in development since 2018, according to an advisory published on Tuesday by the ESET. The malware has been named Janeleiro, and appears to be focused on Brazilian targets exclusively. The malware has targeted other entities,

Read More
05 Apr 2021

Call of Duty Cheats Expose Gamers to Malware, Takeover

Activision has warned the public that cyberattackers are currently disguising malware within cheat programs for video games such as Call of Duty: Warzone. The game is actively being targeted with these attacks that insert remote-access Trojan malware into advertisements for cheat tools. According to Activision, the scam first surfaced in

Read More
25 Mar 2021

Rise in Attacks on ICS Computers in Second Half of 2020

According to new research from Kaspersky, attacks on Industrial Control System (ICS) computers went up by .85 percentage points in the second half of 2020. The analysis found that the variety of malware families targeting these devices also increased by a third between the first and second half of 2020.

Read More
24 Mar 2021

Purple Fox malware evolves to propagate across Windows machines

An upgraded version of the Purple Fox malware, which has been around since 2018, has been observed in a new aggressive and expanding campaign. The malware historically relied on exploit kits and phishing emails to spread until recently when researchers found a weeks-long campaign that utilized the malware variant. The

Read More
22 Mar 2021

CopperStealer Malware Targets Facebook and Instagram Business Accounts

A new password and cookie stealer malware called CopperStealer has emerged, targeting accounts of tech giants such as Apple, Google, Amazon, and Facebook. According to researchers, the malware operators have hijacked the online accounts existing within these entities since 2019, later using them for criminal activities. The operation has gone

Read More