trojan

Malicious 3MF models can go undetected for a long time. Security researchers have discovered a vulnerability in the popular 3D printing software UltiMaker Cura. The problem was identified by Checkmarx specialists, who analyzed the source code during security testing as part of their internal...

Malicious attachments hide much more than it seems at first glance. Researchers from Trend Micro have discovered a new wave of phishing attacks targeting users in Brazil. The attackers are using the Astaroth Trojan, known as a banking data infostealer, as part of a phishing campaign called...

The invisible thief walked around the app store for 5 months. The Check Point Research (CPR) team has discovered a malicious cryptodrainer app on Google Play designed to steal cryptocurrency. This is the first time that the drainer is focused exclusively on mobile devices. The app used...

HTML Smuggling has become the main trump card of cunning cybercriminals. Russian-speaking users have become the target of a new cyberattack spreading the DCRat Trojan (also known as the DarkCrystal RAT) through the HTML Smuggling technique. This is the first time that such a delivery method has...

Installing mobile apps has never been so dangerous. A new variant of the Android malware called Octo2, which is an improved version of Octo (ExobotCompact), is being distributed in Europe. According to ThreatFabric experts, the new version could significantly affect the cybersecurity landscape...

How Necro deceived the security system and what advertising has to do with it. At the end of August, Kaspersky Lab specialists recorded the activity of malware called Necro, which penetrated popular applications on the Google Play platform and unofficial sources. Necro is an Android downloader...

Pagers turned out to be a death trap disguised as secure means of communication. On Tuesday, after 3:30 p.m., a series of explosions began in Lebanon, which swept through various parts of the country, causing panic, chaos and numerous casualties. The explosions were triggered by communication...

A sophisticated method of disguise makes the new malware almost invisible. Cybersecurity experts from Kaspersky Lab have discovered a new piece of malware called SambaSpy that poses a threat to users in Italy. This Remote Access Trojan (RAT) is used by hackers to take full control of victims'...

Even experienced specialists do not always recognize new banking Trojans. In Latin America, there has been a sharp increase in phishing attacks associated with the distribution of the dangerous banking Trojans Mekotio and BBTok. These malware threats aim to steal banking data and conduct...

Why is your antivirus powerless against a new Trojan? CYFIRMA has discovered a new malicious program called Mekotio Trojan, which is actively distributed among users around the world. This sophisticated Trojan uses PowerShell technology to infiltrate computers and steal sensitive information...

Researchers from Kaspersky Lab report the discovery of a macOS version of the HZ Rat backdoor targeting users of the Chinese applications DingTalk and WeChat. At the same time, the observed artifacts almost exactly repeat the functionality of the Windows version of the backdoor and differ only...

Cloud services have become a key link in the spread of digital contagion. A new Remote Access Trojan (RAT) called MoonPeak has been discovered as part of a campaign run by a cyber group linked to the North Korean government. Cisco Talos experts attributed this malicious campaign to the UAT-5394...

A random click on an ad risks turning into a HeadLace attack. The hacker group APT28 recently launched a new campaign to distribute the HeadLace malware through a fake car sale ad. The campaign began in March 2024 and is likely aimed at diplomats. This tactic is not new to cybercriminals. For...

Hunters International does not spare even medical institutions. The ransomware group Hunters International has started using a new remote access Trojan (RAT) in the C# language called SharpRhino to infiltrate corporate networks. This malicious software helps hackers achieve an initial...

Android users voluntarily give their data to the new Trojan. Intel 471 specialists have identified a new banking Trojan called BlankBot, targeting Android users in Turkey. The program is designed to steal financial information and has a wide range of malicious features. BlankBot is capable of...

BlankBot Trojan, designed to attack owners of Android mobile devices, has rich functionality and allows operators to execute commands on infected devices. Researchers at Intel 471 discovered BlankBot on July 24, although the first samples of the malware date back to late June. Almost none of...

Advanced security circumvention and self-destruction of evidence are ushering in a new era of digital fraud. Cybersecurity researchers from the Italian company Cleafy recently discovered a new remote access trojan (RAT) for Android called BingoMod, which not only performs fraudulent money...

French experts have found a way to remove the PlugX Trojan. A large-scale operation to remove the PlugX Trojan from infected devices has begun in 6 countries around the world. The campaign was organized by the French police with the support of Europol and the French information security company...

An American cybersecurity company mistakenly hired a North Korean hacker as its chief software engineer. After receiving a corporate computer, he immediately started downloading malware to it. Remote Engineer The American company KnowBe4, which deals with cybersecurity issues, mistakenly hired...

Google Ads is used to run a sophisticated campaign. In recent weeks, Threat Down experts have seen a surge in malicious ads on Google aimed at IT professionals. The campaign aims to gain access to victims systems and steal confidential data. Research has shown the use of a single...