trojan

Clever disguise allows the malware to permanently register on infected devices. A new type of banking malware for Android, dubbed "SoumniBot", uses an unusual method of obfuscation, exploiting vulnerabilities in the process of extracting and analyzing the Android manifest. This allows them to...

AZORult adapts to modern defenses with a clever campaign. Netskope Threat Labs has revealed a new campaign that uses Google Sites phishing pages to distribute the AZORult infostiler. The phishing campaign is not yet associated with any specific attacker or group, but is aimed at collecting...

Researchers talk about new features of the old cyber threat. Researchers from Palo Alto Networks have discovered a new variant of the well - known remote access Trojan-BIFROSE (also known as Bifrost). The updated version is adapted for attacks on Linux systems. Its distinctive feature is the...

One of the oldest RAT threats has become suspiciously active recently. There is a new Linux version of the remote access Trojan Bifrost, which uses a number of new masking methods. One of the main tools is a fake domain, similar to a legitimate VMware one. Bifrost, first discovered 20 years...

The study is an important step forward in our understanding of the fundamental laws of nature. A new study conducted by Professor Chen Xurong of the Institute of Modern Physics of the Chinese Academy of Sciences reveals the secrets of the origin of the proton mass. The results, published in the...

Biometrics has become a truly valuable resource for cybercriminals. Cybercriminals have begun attacking iPhone owners with malware that steals 3D scans of individuals for unauthorized access to bank accounts. This became known from a study of the company Group-IB, which deals with...

How to master stock trading without losing your last savings? As part of the regular security update Patch Tuesday, which we already wrote about earlier , Microsoft fixed a vulnerability in SmartScreen, which is actively used by hackers to distribute the DarkMe remote access Trojan. In this...

Using the Nim language and open tools shows how hackers follow trends. Kaspersky Lab specialists have discovered the Coyote Banking Trojan, which targets users of more than 60 banking institutions, mainly from Brazil. A distinctive feature of this malware is a complex infection chain that uses...

It seems that the malware authors have secret access to insider information... Cybersecurity experts from Check Point have discovered another modification of the Raspberry Robin malware, first identified back in 2021. This Trojan is characterized by a high degree of adaptability and...

The banking Trojan Mispadu has become the latest cyber threat that exploits a vulnerability in Windows SmartScreen. Mispadu is written in Delphi and is designed to steal the victim's confidential information. The Unit 42 team (owned by Palo Alto Networks) first detected Mispadu in 2019, and...

How scientists made the world play by its own rules. A recently published study in the journal Nature Physics presents a groundbreaking method for controlling and capturing light waves based on the exotic properties of Lagrange points. Scientists from the University of Southern California have...

Thanks to the company's efforts, the banking Trojan stopped terrorizing Latin American banks. During a joint operation between ESET and the Brazilian Federal Police, actions were taken to stop the activities of the Grandoreiro botnet, as a result of which victims suffered $3.9 million...

When will IT giants finally fix a fundamental flaw in their advertising services? Recently, security experts from Malwarebytes identified a malicious campaign aimed at Chinese-speaking users who became victims of intruders thanks to the Google Ads advertising service. Cybercriminals used...

Researchers F.A.C.C.T. report the addition to the “warriors” regiment with a new remote access Trojan, RADX, which was used in recent attacks on Russian marketplaces, retail chains, banks and IT companies. A little earlier, the group behind the attacks used another Trojan - DarkCrystal RAT...

The authors are ready to share advanced software to take control of the device. The hacker group Anonymous Arab has released a Remote Access Trojan (RAT) called Silver RAT, which is able to bypass security and run hidden applications unnoticed. This was reported by the information security...

The BlueNoroff group has come up with a way to infect financial organizations and investors. Kaspersky Lab has discovered a new version of the malicious boot loader for macOS, presumably associated with the BlueNoroff APT group and its RustBucket campaign. The group is aimed at financial...

Written in C++, the Chinese malware has an extensive range of spy features. According to a new report by Cisco Talos, a group of Chinese-speaking hackers has carried out a malicious campaign targeting the Ministry of Foreign Affairs of Uzbekistan, as well as private organizations in South...

Hackers have found a way to invade and control victims computers without being noticed. FortiGuard Labs has discovered that the Konni APT group linked to North Korea is using an infected Word document as part of an ongoing phishing campaign. Konni was first detected by Cisco Talos in 2017, but...

Why would a harmless extension need the financial data of Brazil's largest banks? Trend Micro has discovered a malicious extension for Google Chrome called ParaSiteSnatcher that targets users in Latin America, particularly Brazil. The extension allows attackers to track, manipulate, and steal...

In recent months, the HP Wolf Security team has recorded an increase in the activity of Trojans distributed in XLL files. To bypass the blocking of such downloads introduced by Microsoft, attackers send their emails from compromised accounts. In the third quarter of 2023, 80% of malware...