malware

Attackers bypass antivirus programs and permanently gain a foothold in their victims ' systems. The Slovak company ESET discovered the activities of a previously unknown group of hackers associated with China, and assigned it the code name Blackwood. The group has been active since 2018 and...

Исследователи кибербезопасности пролили свет на командно-контрольный сервер (C2) известного семейства вредоносных программ под названием SystemBC. "SystemBC можно приобрести на подпольных торговых площадках и поставляется в архиве, содержащем имплантат, сервер командования и управления (C2) и...

What does the band have in common with the legendary BlackMatter? Cybersecurity company Trend Micro has discovered that in 2023, the Kasseika ransomware group joined an increasing number of cybercrime groups using the BYOVD (Bring Your Own Vulnerable Driver) tactic, which allows attackers to...

A resident of Voronovo is accused of developing malicious computer programs. The details were reported by the telegram channel “102. Neman" Department of Internal Affairs of the Grodno Regional Executive Committee. It was established that a 35-year-old Belarusian received an order via the...

Experts attribute this activity to the termination of QakBot in August. Trend Micro has recorded an active distribution of the PikaBot malware by the Water Curupira group. Operations began in the first quarter of 2023 and continued until the end of June, before resuming in September. PikaBot...

In the new iteration, the banking Trojan has received qualitatively new attack capabilities. Cybersecurity researchers discovered a new version of the Android Trojan for Android called Chameleon, which is aimed primarily at European users of banking applications. The new version of the mobile...

Attackers are testing a new version with some changes. QakBot malware is once again being used in phishing campaigns, despite the successful operation of law enforcement agencies "Duck Hunt" to eliminate the QakBot infrastructure. QakBot (Qbot) started out as a banking Trojan in 2008. Malware...

The company explained how much neural networks have overtaken the capabilities of modern threat analysis. The VirusTotal presented a new study that actively examines the possibilities of using large language models, including neural networks, to detect and automatically analyze malicious code...

SALE RANSOMWARE PHOBOS - Адмпанель в TOR, круглосуточный сапорт. - 80/20 в вашу сторону. - Полностью оффлайн. - Для работы не требует подключения к интернету, не отправляет статистику. - При выключении и повторном включении ПК или его перезагрузке, софт автоматически проверит...

Developers should clearly teach the Slack messenger to format text correctly. Cybersecurity specialists from the eSentire Threat Response Unit have identified an interesting technique for cyber attacks on employees of companies that use the corporate messenger Slack. The method is called...

Several malicious Android apps hosted on the Google Play Store have made their way to more than two million mobile devices. Their task is to display intrusive advertising, hiding their presence in the system. Dr. Web specialists told Advara about the latest kit. According to them, these apps...

A universal program in the cryptominer mask allows you to conduct cyber attacks of any type. Kaspersky Lab specialists have identified a complex malware campaign called StripedFly, previously unknown and extremely confusing. Since 2017, the operation has affected more than one million users...

Phishing and financial fraud are intertwined in a crushing hacker symbiosis. The fast-growing popularity of Brazil's PIX instant payment system has attracted the attention of cybercriminals, who have begun using the new GoPIX malware to illegally extract profits. Kaspersky Lab, which has been...

Positive Technologies: Using MaxPatrol SIEM, the company's specialists identified HPE affecting hundreds of thousands of users. Positive Technologies specialists used the MaxPatrol SIEM information security event monitoring and incident management system to detect abnormal activity in the...

Now users pay for installing games with their personal identity. According to a new report from Trend Micro, attackers have started using the Discord Content Delivery Network (CDN) to distribute the Lumma Stealer malware. Moreover, hackers create bots using the app's API that can control...

Learn how to protect your data from the new cyber threat. Researchers at checkmarx have discovered hidden malware targeting users of the Telegram messenger and Amazon Web Services (AWS) cloud services. This threat is an extremely clever method of data theft, which makes it particularly...

Key features of the new malware that is already being sold on the darknet. Cybersecurity researchers at Zscaler ThreatLabZ have discovered a new malware called BunnyLoader, which is distributed on a Malware-as-a-Service (MaaS) model and sold on underground cybercrime forums. The researchers...

Did a secure browser decide to spy on its users? Recently, users of the "most popular desktop OS in the world" began to report that the Microsoft Defender antivirus program, integrated by default in Windows 10 and 11, marks the latest version of the Tor browser as malware "Win32 / Malgent!MTB"...

Don't blindly trust a digital companion when it comes to installing software. Responses displayed by Bing, Microsoft's artificial intelligence chatbot, revealed a mechanism for spreading malicious software when searching for popular software tools. This was announced by Malwarebytes in its...

The company fixes dangerous vulnerabilities that opened access to ICS systems. Japanese company Omron recently released patches for vulnerabilities in the programmable logic controller (PLC) and engineering software discovered by cybersecurity firm Dragos during its analysis of sophisticated...