Lucene search
K

21 matches found

HackRead
HackRead
added 2026/05/26 6:46 p.m.19 views

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Cybercriminals are using SEO poisoning and fake Gemini and Claude installer sites to infect developers with fileless malware and steal data...

5.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/04/09 3:0 p.m.10 views

Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees

In this article 1. Storm-2755’s attack chain 2. Defending against Storm-2755 and AiTM campaigns 3. Microsoft Defender detection and hunting guidance 4. Indicators of compromise Microsoft Incident Response – Detection and Response Team DART researchers observed an emerging, financially motivated...

8.7CVSS6.6AI score0.00759EPSS
Exploits1
The Hacker News
The Hacker News
added 2026/03/13 1:38 p.m.10 views

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Microsoft has disclosed details of a credential theft campaign that employs fake virtual private network VPN clients distributed through search engine optimization SEO poisoning techniques. "The campaign redirects users searching for legitimate enterprise software to malicious ZIP files on...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2026/01/07 5:9 p.m.12 views

Black Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software Searches

A cybercrime gang known as Black Cat has been attributed to a search engine optimization SEO poisoning campaign that employs fraudulent sites advertising popular software to trick users into downloading a backdoor capable of stealing sensitive data. According to a report published by the National...

6.4AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/15 5:47 a.m.5 views

HiddenGh0st, Winos and kkRAT Exploit SEO, GitHub Pages in Chinese Malware Attacks

Chinese-speaking users are the target of a search engine optimization SEO poisoning campaign that uses fake software sites to distribute malware. "The attackers manipulated search rankings with SEO plugins and registered lookalike domains that closely mimicked legitimate software sites," Fortinet...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/04 8:40 a.m.65 views

Vietnamese Cybercriminals Targeting Facebook Business Accounts with Malvertising

Malicious actors associated with the Vietnamese cybercrime ecosystem are leveraging advertising-as-a-vector on social media platforms such as Meta-owned Facebook to distribute malware. "Threat actors have long used fraudulent ads as a vector to target victims with scams, malvertising, and more,"...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/16 12:47 p.m.2 views

Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked Software

A "large and resilient infrastructure" comprising over 250 domains is being used to distribute information-stealing malware such as Raccoon and Vidar since early 2020. The infection chain "uses about a hundred of fake cracked software catalogue websites that redirect to several links before...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/11/14 10:45 a.m.44 views

Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign

A new malicious campaign has compromised over 15,000 WordPress websites in an attempt to redirect visitors to bogus Q&A portals. "These malicious redirects appear to be designed to increase the authority of the attacker's sites for search engines," Sucuri researcher Ben Martin said in a report...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/02/01 1:30 p.m.20 views

SolarMarker Malware Uses Novel Techniques to Persist on Hacked Systems

In a sign that threat actors continuously shift tactics and update their defensive measures, the operators of the SolarMarker information stealer and backdoor have been found leveraging stealthy Windows Registry tricks to establish long-term persistence on compromised systems. Cybersecurity firm...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2022/01/13 2:23 p.m.19 views

GootLoader Hackers Targeting Employees of Law and Accounting Firms

Operators of the GootLoader campaign are setting their sights on employees of accounting and law firms as part of a fresh onslaught of widespread cyberattacks to deploy malware on infected systems, an indication that the adversary is expanding its focus to other high-value targets. "GootLoader is...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/04/27 10:29 a.m.175 views

Hackers Exploit 0-Day Gatekeeper Flaw to Attack macOS Computers

Security is only as strong as the weakest link. As further proof of this, Apple released an update to macOS operating systems to address an actively exploited zero-day vulnerability that could circumvent all security protections, thus permitting unapproved software to run on Macs. The macOS flaw,...

8.8CVSS0.3AI score0.68531EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/04/15 9:11 a.m.67 views

YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs

Cybercriminals are resorting to search engine poisoning techniques to lure business professionals into visiting seemingly legitimate Google sites that install a Remote Access Trojan RAT capable of carrying out a wide range of attacks. The attack works by leveraging searches for business forms suc...

1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/01/03 5:22 p.m.42 views

Search engine shenanigans: Malwarebytes mentions aren’t what they seem

Thing might be a touch quiet at the moment as we ease into 2018, but that doesn't mean dubious antics and dodgy dealings aren't still making waves online. As a matter of fact, should you go searching for some of our researchers, their blog posts, or just a couple of notable quotables from news...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/02/04 3:25 p.m.13 views

PNG Image Metadata Found Leveraging iFrame Injections

Researchers have discovered a relatively new way to distribute malware that relies on reading JavaScript code stored in an obfuscated PNG file’s metadata to trigger iFrame injections. The technique makes it highly unlikely a virus scanner would catch it because the injection method is so deeply...

7.2AI score
Exploits0References6
ThreatPost
ThreatPost
added 2012/02/13 5:9 p.m.14 views

Prediction: Handful of Malicious Networks Will Spawn Most Attacks In 2012

A shadowy web of malicious networks, or “malnets” will be the source of two thirds of online attacks in 2012, according to a report from the security firm Blue Coat. Despite the continued industry focus on specific families and samples of malicious software, Blue Coat researchers say that...

7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2011/08/08 6:33 p.m.11 views

Hacked WordPress Blogs Used to Poison Google Image Search

A researcher has found evidence of thousands of compromised WordPress blogs that are being used to insert malicious images into Google search results. The report, from the unmaskparasites.com blog, may be evidence of the after affects of a widespread attack on WordPress blogs reported last week, ...

0.4AI score
Exploits0References5
ThreatPost
ThreatPost
added 2011/06/09 6:12 p.m.16 views

Image of the Day: SEO Poisoning

Today’s Image of the Day comes from web security firm Imperva, who’ve crafted an infographic to accompany their monthly Hacker Intelligence Initiative report on search engine poisoning SEP. We’ve seen before how attackers continue to poison SEO to thwart search engine algorithms. To increase thei...

2.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2010/06/28 2:18 p.m.20 views

Scareware, Black Hat SEO and You

The scareware and rogue AV problem that initially appeared a few years ago and has since found its way onto thousands and thousands of legitimate Web sites, including The New York Times home page, has now reached epidemic levels. The scams are mostly boilerplate and well-understood, but it’s not...

0.5AI score
Exploits0References2
ThreatPost
ThreatPost
added 2010/03/10 8:8 p.m.10 views

Paul Judge on Twitter Crime and Web Security

Dennis Fisher talks with Paul Judge of Barracuda Networks about the company’s new report on Twitter phishing trends, search engine poisoning, Web security and what can be done about the spam pandemic. Podcast audio courtesy of sykboy65 Subscribe to the Digital Underground podcast on...

0.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2010/02/25 6:53 p.m.8 views

Search Engine Poisoning Is On the Rise

To improve the chances of installing their malware on random computers, scareware peddlers have decided to set up more that 60 websites that contain hundreds of possible search matches for hot, trending topics. Read the full article. Help Net Security...

1AI score
Exploits0References2
Rows per page
Query Builder