Lucene search
K

43 matches found

The Hacker News
The Hacker News
added 2025/12/09 4:1 p.m.5 views

Four Threat Clusters Using CastleLoader as GrayBravo Expands Its Malware Service Infrastructure

Four distinct threat activity clusters have been observed leveraging a malware loader known as CastleLoader , strengthening the previous assessment that the tool is offered to other threat actors under a malware-as-a-service MaaS model. The threat actor behind CastleLoader has been assigned the...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/08/19 12:37 p.m.28 views

Cybercriminals Exploit Popular Software Searches to Spread FakeBat Malware

Cybersecurity researchers have uncovered a surge in malware infections stemming from malvertising campaigns distributing a loader called FakeBat. "These attacks are opportunistic in nature, targeting users seeking popular business software," the Mandiant Managed Defense team said in a technical...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/21 8:42 a.m.65 views

New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

A new information stealer has been found leveraging Lua bytecode for added stealth and sophistication, findings from McAfee Labs reveal. The cybersecurity firm has assessed it to be a variant of a known malware called RedLine Stealer owing to the fact that the command-and-control C2 server IP...

9.8CVSS6.4AI score0.9466EPSS
Exploits23
Securelist
Securelist
added 2024/03/13 11:29 a.m.39 views

What’s in your notepad? Infected text editors target Chinese users

"Malvertising" is a popular way of attracting victims to malicious sites: an advertisement block is placed at the top of the search results, increasing the likelihood of users clicking the link. Sites at the top of search results also tend to be more trusted by users. A year ago, our experts...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/09 8:17 a.m.58 views

Beware! YouTube Videos Promoting Cracked Software Distribute Lumma Stealer

Threat actors are resorting to YouTube videos featuring content related to cracked software in order to entice users into downloading an information stealer malware called Lumma. "These YouTube videos typically feature content related to cracked applications, presenting users with similar...

6.8AI score
Exploits0
HackRead
HackRead
added 2023/12/19 6:29 p.m.12 views

Global malspam targets hotels, spreading Redline and Vidar stealers

By Deeba Ahmed Fake Complaints, Real Malware - Sophos Warns Hotels of Global Malspam Attack! This is a post from HackRead.com Read the original post: Global malspam targets hotels, spreading Redline and Vidar stealers...

7.3AI score
Exploits0
hivepro
hivepro
added 2023/11/14 8:11 a.m.24 views

Malicious CPU-Z App Distributed Through Ads on Fake Windows News Site

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A threat actor has been using Google Ads as a platform to distribute a tampered version of the CPU-Z tool. CPU-Z is a widely-used utility that provides information about various hardware components in a...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/09 1:26 p.m.47 views

New Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious Installers

A new malvertising campaign has been found to employ fake sites that masquerade as legitimate Windows news portal to propagate a malicious installer for a popular system profiling tool called CPU-Z. "This incident is a part of a larger malvertising campaign that targets other utilities like...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/11/09 2:54 a.m.36 views

Malvertiser copies PC news site to deliver infostealer

The majority of malvertising campaigns delivering malicious utilities that we have tracked so far typically deceive victims with pages that are almost the exact replica of the software vendor being impersonated. For example, we have seen fake websites appearing like the real Webex, AnyDesk or...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/20 1:28 p.m.27 views

Vietnamese Hackers Target U.K., U.S., and India with DarkGate Malware

Attacks leveraging the DarkGate commodity malware targeting entities in the U.K., the U.S., and India have been linked to Vietnamese actors associated with the use of the infamous Ducktail stealer. "The overlap of tools and campaigns is very likely due to the effects of a cybercrime marketplace,"...

6.9AI score
Exploits0
hivepro
hivepro
added 2023/09/27 6:6 a.m.18 views

New Variant of RedLine Stealer Uses Batch Script to Evade Detection

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new variant of RedLine Stealer that is being distributed as a batch script file. This new variant of RedLine Stealer is more sophisticated than previous versions and uses a number of techniques to evad...

6.9AI score
Exploits0
hivepro
hivepro
added 2023/09/12 6:53 a.m.27 views

HijackLoader a Deceptive Modular Malware Loader

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new malware loader, HijackLoader, is swiftly gaining prominence within the cybercriminal sphere, being leveraged to disseminate an array of malicious malware strains, including DanaBot, SystemBC, and...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/11 6:23 a.m.54 views

New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World

A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads such as DanaBot, SystemBC, and RedLine Stealer. "Even though HijackLoader does not contain advanced features, it is capable of using a variety of modules for code injection a...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/26 7:8 a.m.29 views

Rust-based Realst Infostealer Targeting Apple macOS Users' Cryptocurrency Wallets

A new malware family called Realst has become the latest to target Apple macOS systems, with a third of the samples already designed to infect macOS 14 Sonoma, the upcoming major release of the operating system. Written in the Rust programming language, the malware is distributed in the form of...

6.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/07/11 12:0 a.m.4 views

PT-2023-3685 · Microsoft · Windows Mshtml Platform +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows MSHTML Platform affected versions not specified Description: The issue is related to a privilege escalation vulnerability in the Microsoft Windows MSHTML Platform. It is caused by a buffer overflow in memory, which can allow...

7.8CVSS9.2AI score0.11867EPSS
Exploits0References25
Talos Blog
Talos Blog
added 2023/07/07 9:26 p.m.15 views

Threat Roundup for June 30 to July 7

Today, Talos is publishing a glimpse into the most prevalent threats weve observed between June 30 and July 7. As with previous roundups, this post isnt meant to be an in-depth analysis. Instead, this post will summarize the threats weve observed by highlighting key behavioral characteristics,...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/29 12:15 p.m.3 views

AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks

A crypter alternatively spelled cryptor malware dubbed AceCryptor has been used to pack numerous strains of malware since 2016. Slovak cybersecurity firm ESET said it identified over 240,000 detections of the crypter in its telemetry in 2021 and 2022. This amounts to more than 10,000 hits per...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/29 12:15 p.m.54 views

AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks

A crypter alternatively spelled cryptor malware dubbed AceCryptor has been used to pack numerous strains of malware since 2016. Slovak cybersecurity firm ESET said it identified over 240,000 detections of the crypter in its telemetry in 2021 and 2022. This amounts to more than 10,000 hits per...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/19 6:53 a.m.38 views

Searching for AI Tools? Watch Out for Rogue Sites Distributing RedLine Malware

Malicious Google Search ads for generative AI services like OpenAI ChatGPT and Midjourney are being used to direct users to sketchy websites as part of a BATLOADER campaign designed to deliver RedLine Stealer malware. "Both AI services are extremely popular but lack first-party standalone apps...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/19 6:53 a.m.3 views

Searching for AI Tools? Watch Out for Rogue Sites Distributing RedLine Malware

Malicious Google Search ads for generative AI services like OpenAI ChatGPT and Midjourney are being used to direct users to sketchy websites as part of a BATLOADER campaign designed to deliver RedLine Stealer malware. "Both AI services are extremely popular but lack first-party standalone apps...

6.1AI score
Exploits0
Rows per page
Query Builder