malware

Newly discovered Vigilante malware outs software pirates and blocks them

Enlarge Getty Images A researcher has uncovered one of the more unusual finds in the annals of malware: booby-trapped files that rat out downloaders and try to prevent unauthorized downloading in the future. The files are available on sites frequented by software pirates. Vigilante, as SophosLabs Principal Researcher Andrew Brandt is calling the malware, gets …

Newly discovered Vigilante malware outs software pirates and blocks them Read More »

Mystery malware steals 26M passwords from 3M PCs. Are you affected?

Enlarge Getty Images Researchers have discovered yet another massive trove of sensitive data, a dizzying 1.2TB database containing login credentials, browser cookies, autofill data, and payment information extracted by malware that has yet to be identified. In all, researchers from NordLocker said on Wednesday, the database contained 26 million login credentials, 1.1 million unique email …

Mystery malware steals 26M passwords from 3M PCs. Are you affected? Read More »

Actively exploited macOS 0day let hackers take screenshots of infected Macs

Enlarge CHUYN / Getty Images Malicious hackers have been exploiting a vulnerability in fully updated versions of macOS that allowed them to take screenshots on infected Macs without having to get permission from victims first. The zeroday was exploited by XCSSET, a piece of malware discovered by security firm Trend Micro last August. XCSSET used …

Actively exploited macOS 0day let hackers take screenshots of infected Macs Read More »

Cybersecurity Firm Spots a Crypto Stealer Distributed Through a Massive Email Spam Campaign and Discord Channels

<div class=”featured_image_container”> </div> <strong>A crypto stealer seems to have spread through a massive spam campaign across several countries, including the United States, Australia, Japan, and Germany. The malware dubbed “Panda Stealer” has been spotted by a cybersecurity company. It is reportedly also distributed on Discord channels.</strong> Malware Can Also Steal Data From Telegram and Discord …

Cybersecurity Firm Spots a Crypto Stealer Distributed Through a Massive Email Spam Campaign and Discord Channels Read More »

Researchers Spot New Cryptocurrency Stealing Malware Advertised Under a Subscription Model

<div class=”featured_image_container”> </div> <strong>A cryptocurrency-related malware program has been advertised on darknet forums as the “leading way to make money in 2021,” raising alarms among the cybersecurity community. Palo Alto Networks published a report on the malicious app Westeal, detailing the author’s ties with other types of malware that steals major streaming services accounts.</strong> Westeal …

Researchers Spot New Cryptocurrency Stealing Malware Advertised Under a Subscription Model Read More »

Millions of web surfers are being targeted by a single malvertising group

Enlarge Getty Images Hackers have compromised more than 120 ad servers over the past year in an ongoing campaign that displays malicious advertisements on tens of millions, if not hundreds of millions, of devices as they visit sites that, by all outward appearances, are benign. Malvertising is the practice of delivering ads to people as …

Millions of web surfers are being targeted by a single malvertising group Read More »

Malicious cheats for Call of Duty: Warzone are circulating online

Enlarge CHUYN / Getty Images Criminals have been hiding malware inside publicly available software that purports to be a cheat for Activision’s Call of Duty: Warzone, researchers with the game maker warned earlier this week. Cheats are programs that tamper with in-game events or player interactions so that users gain an unfair advantage over their …

Malicious cheats for Call of Duty: Warzone are circulating online Read More »

Tens of thousands of US organizations hit in ongoing Microsoft Exchange hack

Enlarge Getty Images Tens of thousands of US-based organizations are running Microsoft Exchange servers that have been backdoored by threat actors who are stealing administrator passwords and exploiting critical vulnerabilities in the email and calendaring application, it was widely reported. Microsoft issued emergency patches on Tuesday, but they do nothing to disinfect systems that are …

Tens of thousands of US organizations hit in ongoing Microsoft Exchange hack Read More »

A new type of supply-chain attack with serious consequences is flourishing

Enlarge Przemyslaw Klos / EyeEm / Getty Images A new type of supply chain attack unveiled last month is targeting more and more companies, with new rounds this week taking aim at Microsoft, Amazon, Slack, Lyft, Zillow, and an unknown number of others. In weeks past, Apple, Microsoft, Tesla, and 32 other companies were targeted …

A new type of supply-chain attack with serious consequences is flourishing Read More »

New malware found on 30,000 Macs has security pros stumped

Enlarge Jayson Photography / Getty Images A previously undetected piece of malware found on almost 30,000 Macs worldwide is generating intrigue in security circles, which are still trying to understand precisely what it does and what purpose its self-destruct capability serves. Once an hour, infected Macs check a control server to see if there are …

New malware found on 30,000 Macs has security pros stumped Read More »