Lucene search
K

8 matches found

Talos Blog
Talos Blog
added 2023/07/11 5:4 p.m.12 views

Undocumented driver-based browser hijacker RedDriver targets Chinese speakers and internet cafes

Cisco Talos has identified multiple versions of an undocumented malicious driver named "RedDriver," a driver-based browser hijacker that uses the Windows Filtering Platform WFP to intercept browser traffic. RedDriver has been active since at least 2021. RedDriver utilizes HookSignTool to forge it...

7.7AI score
Exploits0
hivepro
hivepro
added 2023/06/13 6:58 a.m.53 views

Actors, Threats and Vulnerabilities 5 June to 11 June 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of seven attacks executed, taking advantage of five different vulnerabilities in...

9.3CVSS6.9AI score0.99934EPSS
Exploits77
hivepro
hivepro
added 2023/06/07 8:48 a.m.55 views

MediaArena: A Deceptive Browser Hijacker Exploiting User Data and Security Threats

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary MediaArena is a deceptive software that hijacks browsers, redirects searches, and collects user data for malicious activities, emphasizing the importance of removal and caution. To receive real-time thre...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2022/05/31 11:38 a.m.38 views

ChromeLoader Browser Hijacker Provides Gateway to Bigger Threats

ChromeLoader may seem on the surface like a run-of-the-mill browser hijacker that merely redirects victims to advertisement websites. However, its use of PowerShell could pose a greater risk by leading to further and advanced malicious activity, such as the propagation of ransomware or spyware or...

7.3AI score
Exploits0References6
The Hacker News
The Hacker News
added 2022/05/26 11:24 a.m.24 views

Experts Warn of Rise in ChromeLoader Malware Hijacking Users' Browsers

A malvertising threat is witnessing a new surge in activity since its emergence earlier this year. Dubbed ChromeLoader, the malware is a "pervasive and persistent browser hijacker that modifies its victims' browser settings and redirects user traffic to advertisement websites," Aedan Russell of R...

3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/07/28 3:30 p.m.16 views

Fireball arrests made

Following some arrests in China, we may see a decrease in the amount of adware and adfraud hailing from the Rafotech labs. According to some reports 250 million machines may have been infected with one variant or another of Rafotechs’ products. We have shared some information about the potential...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2014/09/22 2:11 p.m.7 views

Kyle and Stan Malvertising Network Nine Times Bigger

The Kyle and Stan malvertising network has a much bigger reach than first reported—about nine times bigger. In the two weeks since Cisco’s first report on the malicious ad distribution campaign, researchers had a chance to look closer at telemetry data, connect more dots and learn that nearly 6,5...

1.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/09/08 11:2 a.m.12 views

'Kyle and Stan' Malvertising Network Targets Windows and Mac Users

A malvertising network that has been operating since at least May has been able to place malicious ads on a number of high-profile sites, including Amazon and YouTube and serves a unique piece of malware to each victim. The network, dubbed Kyle and Stan by the Cisco researchers who analyzed its...

1.5AI score
Exploits0References1
Rows per page
Query Builder