Author: Mash

Gootkit (also known as Gootloader) has recently added several tools to its arsenal and components to its infection chains. Gootkit [...]

The new variant of PlugX malware uses a novel technique to avoid detection. PlugX hides malicious files on removable USB [...]

Recently discovered ransomware named Mimic leverages the APIs of the 'Everything' Windows search engine to find files for encryption. Ransomware [...]

iOS 16.3 has been released by Apple, arriving with support for hardware security keys to provide extra protection against phishing [...]

Previously threat actors commonly used Word and Excel documents in phishing emails; however, after Microsoft disabled macros by default in [...]

According to K7 Security Labs, unknown threat actors are responsible for the attack that uses the Windows error reporting tool [...]

DuckDuckGo is a company focused on privacy that offers its own search engine, email service, several apps, and browser extensions. [...]

A vulnerability dubbed Achilles has been discovered by Microsoft principal security researcher Jonathan Bar Or. This flaw in macOS allowed [...]

Previously the operations of the Glupteba blockchain-enabled botnet were disrupted by Google back in December 2021. However, it seems that [...]

Microsoft has fixed the known issue of lower-than-expected performance and stuttering in some games, likely caused by some GPUs entering [...]

QBot is a well-known Windows malware that is commonly distributed via phishing emails that load other payloads like CobaltStrike and [...]

Microsoft, Mandiant, Sophos, and SentinelOne have shared information about the campaign with threat actors utilizing malicious kernel-mode hardware drivers signed [...]

The latest Windows 11 update brought many features like folders in Start, tabs in File Explorer, and several education desktop [...]

Part of the Iranian state-sponsored hacking group is being connected with the new custom malware Drokbk. One of its main [...]

Microsoft has stated that they are aware and are working on a fix to the issue affecting apps using ODBC [...]

Microsoft warns that threat actor DEV-0139 targets cryptocurrency investment companies using Telegram groups to access the VIP customers of those [...]

Linux PRoot utility has been abused by hackers in BYOF (Bring Your Own Filesystem) attacks to store Linux malware. The [...]

According to Dr.Web's October review of virus activity, a large set of Android malware, phishing, and adware apps have been [...]

North Korean hacking group known as Lazarus has launched a new attack using the fake cryptocurrency app under the made-up [...]

Data wiper CryWiper, discovered by Kaspersky this fall, is actively targeting Russian courts and mayors' offices. CryWiper disguises itself as [...]

According to security researchers, vulnerabilities in mobile apps for Hyundai and Genesis car models after 2012 can be exploited to [...]

Trigona ransomware has been known for quite a while, but previously it wasn't branded and used email for ransom payment [...]

An advanced threat actor Bahamut that was previously involved in cyber espionage has been discovered to distribute trojanized versions of [...]

Threat actors abuse the Microsoft Azure Web Apps service to create a large number of malicious phishing websites disguised as [...]

AXLocker ransomware not only demands a ransom from its victims after encrypting their files but it also tracks when users [...]

Security researcher ProxyLife has discovered a new QBot phishing campaign where attackers abuse Windows Mark Of The Web zero-day by [...]

Mirai-based botnet 'RapperBot' was first discovered last August targeting Linux servers. The recent 'RapperBot' campaign infects IoT devices to later [...]

North Korean hackers have been spotted using an updated version of DTrack backdoor to target various organizations in Europe and [...]

Cybersecurity researcher David Schütz accidentally found a way to bypass the lock screen on his up-to-date Google Pixel 6 and [...]

Recently discovered malware called 'StrelaStealer' was seen to steal Outlook and Thunderbird email accounts, targeting Spanish users. 'StrelaStealer's vector of [...]

Chrome browser botnet 'Cloud9' uses fake extensions distributed by websites pushing fake Adobe Flash Player updates to steal users' data, [...]

Robin Banks phishing-as-a-service platform has been known for its campaigns targeting big US banks, such as Bank of America, Capital [...]