New Trojan-Proxy Malware Spreading via Pirated Software Dec 08, 2023NewsroomEndpoint Security / Malware Unauthorized websites distributing trojanized versions of cracked software have been found to infect Apple macOS users with a new Trojan-Proxy malware. “Attackers can use this type of malware to gain money by building a proxy server network Read more…
UEFI Vulnerabilities Expose Devices to Stealth Malware Attacks Dec 04, 2023NewsroomTechnology / Firmware Security The Unified Extensible Firmware Interface (UEFI) code from various independent firmware/BIOS vendors (IBVs) has been found vulnerable to potential attacks through high-impact flaws in image parsing libraries embedded into the firmware. The shortcomings, collectively labeled LogoFAIL Read more…
Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware Dec 02, 2023NewsroomCybercrime / Malware A Russian national has been found guilty in connection with his role in developing and deploying a malware known as TrickBot, the U.S. Department of Justice (DoJ) announced. Vladimir Dunaev, 40, was arrested in South Korea Read more…
New FjordPhantom Android Malware Targets Banking Apps in Southeast Asia Dec 01, 2023NewsroomMobile Security / Banking Security Cybersecurity researchers have disclosed a new sophisticated Android malware called FjordPhantom that has been observed targeting users in Southeast Asian countries like Indonesia, Thailand, and Vietnam since early September 2023. “Spreading primarily through Read more…
N. Korean Hackers ‘Mixing’ macOS Malware Tactics to Evade Detection Nov 28, 2023NewsroomMalware / Cyber Espionage The North Korean threat actors behind macOS malware strains such as RustBucket and KANDYKORN have been observed “mixing and matching” different elements of the two disparate attack chains, leveraging RustBucket droppers to deliver KANDYKORN. Read more…
New WailingCrab Malware Loader Spreading via Shipping-Themed Emails Nov 23, 2023NewsroomMalware / Threat Analysis Delivery- and shipping-themed email messages are being used to deliver a sophisticated malware loader known as WailingCrab. “The malware itself is split into multiple components, including a loader, injector, downloader and backdoor, and successful requests to Read more…
North Korean Hackers Pose as Job Recruiters and Seekers in Malware Campaigns Nov 22, 2023NewsroomCyber Espionage / Social Engineering North Korean threat actors have been linked to two campaigns in which they masquerade as both job recruiters and seekers to distribute malware and obtain unauthorized employment with organizations based in Read more…
New Agent Tesla Malware Variant Using ZPAQ Compression in Email Attacks Nov 21, 2023NewsroomMalware Threat / Data Privacy A new variant of the Agent Tesla malware has been observed delivered via a lure file with the ZPAQ compression format to harvest data from several email clients and nearly 40 web Read more…
DarkGate and PikaBot Malware Resurrect QakBot’s Tactics in New Phishing Attacks Nov 20, 2023NewsroomThreat Analysis / Malware Phishing campaigns delivering malware families such as DarkGate and PikaBot are following the same tactics previously used in attacks leveraging the now-defunct QakBot trojan. “These include hijacked email threads as the initial infection, Read more…
LummaC2 Malware Deploys New Trigonometry-Based Anti-Sandbox Technique Nov 20, 2023NewsroomMalware / Cyber Attack The stealer malware known as LummaC2 (aka Lumma Stealer) now features a new anti-sandbox technique that leverages the mathematical principle of trigonometry to evade detection and exfiltrate valuable information from infected hosts. The method is designed to Read more…