malware – Page 6 – PossibleThreat Articles

Decoy dog toolkit plays the long game with Pupy RAT

April 26, 2023 0 Comments decoy dog, dns, evasive, Linux, malware, Mobile, nation-state, news, pupy rat, russia, toolkit, Windows

Categories: News

Tags: Pupy RAT

Tags: nation state

Tags: russia

Tags: decoy dog

Tags: toolkit

Tags: linux

Tags: mobile

Tags: windows

Tags: malware

Tags: DNS

Tags: evasive

We take a look at the discovery of a long running malware toolkit campaign evading detection through its use of DNS.

MalwareBytes Security

GuLoader returns with a rotten shipment

April 25, 2023 0 Comments collection, delivery, email, guloader, infection, italy, loader, mail, malspam, malware, news, Scam

Categories: News

Tags: GuLoader

Tags: loader

Tags: malware

Tags: malspam

Tags: email

Tags: mail

Tags: delivery

Tags: collection

Tags: scam

Tags: infection

Tags: Italy

We take a look at a GuLoader campaign which comes bundled with an Italian language fake shipment email.

(Read more…)

The post GuLoader returns with a rotten shipment appeared first on Malwarebytes Labs.

MalwareBytes Security

Malware authors join forces and target organisations with Domino Backdoor

April 19, 2023 0 Comments backdoor, banking, Business, Corporate, data, domino, emotet, loader, malware, Network, news, organisation, Ransomware, steal, theft, trojan

Categories: News

Tags: domino

Tags: loader

Tags: backdoor

Tags: malware

Tags: ransomware

Tags: emotet

Tags: network

Tags: corporate

Tags: business

Tags: organisation

Tags: data

Tags: theft

Tags: steal

Tags: banking

Tags: trojan

We take a look at a malware collective pushing a set of Domino malware files.

Security Sophos

‘AuKill’ EDR killer malware abuses Process Explorer driver

April 19, 2023 0 Comments active adversary, active adversary playbook, anti-edr, aukill, backstab, EDR, edr killer, featured, malware, process explorer, procexp, sophos x-ops, targeted attacks, threat research

Credit to Author: Andrew Brandt| Date: Wed, 19 Apr 2023 10:00:43 +0000

Driver based attacks against security products are on the rise

MalwareBytes Security

Fake Chrome updates spread malware

April 17, 2023 0 Comments browser, chrome, compromised, cryptocurrency, fake, Hacked, malware, miner, monero, news, rogue, site, update, website

Categories: News

Tags: chrome

Tags: browser

Tags: update

Tags: fake

Tags: malware

Tags: monero

Tags: miner

Tags: cryptocurrency

Tags: rogue

Tags: hacked

Tags: compromised

Tags: site

Tags: website

We take a look at a slew of hacked websites pushing fake Chrome updates which are Monero miner malware in disguise.

(Read more…)

The post Fake Chrome updates spread malware appeared first on Malwarebytes Labs.

Security Sophos

Tax firms targeted by precision malware attacks

April 13, 2023 0 Comments featured, guloader, irs, malware, remcos, threat research

Credit to Author: Andrew Brandt| Date: Thu, 13 Apr 2023 10:00:55 +0000

CPAs and accountants received solicitations for tax filing business that were just a social engineering ploy

Security Sophos

Attention gamers! Motherboard maker MSI admits to breach, issues “rogue firmware” alert

April 11, 2023 0 Comments blackmail, data breach, extortion, malware, msi, private key, Ransomware, supply chain

Credit to Author: Paul Ducklin| Date: Tue, 11 Apr 2023 16:58:48 +0000

Stealing private keys is like getting hold of a medieval monarch’s personal signet ring… you get to put an official seal on treasonous material.

Security Sophos

S3 Ep129: When spyware arrives from someone you trust

April 6, 2023 0 Comments 3cx, data loss, malware, Naked Security Podcast, Podcast, Privacy, supply chain, Wi-fi, world backup day

Credit to Author: Paul Ducklin| Date: Thu, 06 Apr 2023 14:57:50 +0000

Scanning tools, supply-chain malware, Wi-Fi hacking, and why there should be TWO World Backup Days… listen now!

Security Sophos

Supply chain blunder puts 3CX telephone app users at risk

March 30, 2023 0 Comments 3cx, electron, git, malware, suuply chain

Credit to Author: Paul Ducklin| Date: Thu, 30 Mar 2023 17:36:16 +0000

Booby-trapped app, apparently signed and shipped by 3CX itself after its source code repository was broken into.

ComputerWorld Independent

3CX DesktopApp compromised by supply chain attack

March 30, 2023 0 Comments application security, malware, voip

Credit to Author: avenkat@idg.com| Date: Thu, 30 Mar 2023 05:25:00 -0700

3CX will be releasing an update for the DesktopApp in the next few hours; meanwhile, users are urged to use the PWA Client instead.