Microsoft has released details about Lumma infostealer that infected over 394,000 Windows systems in just two months.
Malware RSS
A printer company distributed malware-infected files for months. Analysts have now dissected the code and revealed what the malware does once it infects a computer.
A new report has surfaced that the credentials of a DOGE software engineer were present in multiple public dumps from info-stealer malware infections.
Golang's popularity and open module system unfortunately makes it a prime target for supply chain attacks, now a report shows how attackers use malicious Go modules to wipe disks.
Meta reports a security flaw in WhatsApp for Windows that lets attackers trick users into downloading and installing harmful malicious code.
Microsoft has listed a reason why Windows 10 users should update to Windows 11 and do so via a clean install.
ESET researchers uncover "WolfsBane," a Linux backdoor linked to the China-based Gelsemium group. This is Gelsemium's first known Linux malware—hinting at a change in attack strategies.
North Korean hackers may have found a new trick to bypass macOS security and hide malicious code using Google's Flutter.
Cities: Skylines II players who play with mods may want to scan their system for potential malware, as the popular Traffic mod had been breached to spread a suspicious .dll file.
Microsoft has outlined how the built-in Windows Defender Antivirus safeguards Windows 10 and 11 users against keylogger and screen scraper malware.
Cybercriminals are exploiting the recent faulty CrowdStrike update outage using a fake Microsoft recovery manual Word document to deliver a stealer malware which is now tracked as Daolpu.
While CrowdStrike and Microsoft provided fixes, cybercriminals exploited the situation by spreading malware disguised as a hotfix and launching phishing campaigns targeting CrowdStrike customers.
The US Department of Justice has announced the arrest of YunHe Wang for operating what could be the largest botnet ever. While he has been charged, Wang has not yet been convicted.
Some folks love the older retro stuff from the bygone days, like Windows 95 or Windows XP. However, there are dangers to doing it and a video shows what could happen when you run such an OS.
Reports have surfaced this year about reviewers receiving Mini PC preloaded with malware. This is obviously not good, but it raises the question if some of the Mini PCs Neowin received were clean.
File upload logic in GitHub's comments allows hackers to host malware on the service and abuse trusted developers and companies, such as Microsoft, to create legitimate-looking URLs.
The ongoing malware campaign targeting gamers steals credentials to various online services. Activision Blizzard is reportedly investigating and trying to help those with affected accounts.
Data-harvesting malware Phemedrone exploits vulnerability in Windows Defender SmartScreen to avoid warnings and checks. It collects various sensitive data and sends them to the hackers.
Google has outlined several measures taking senders of bulk emails to help cut down on spam. The company will be implementing the changes by February 2024 and users should see a difference.
McAfee has launched a bunch of new features for its McAfee+ and McAfee+ Family plans. Pricing begins at $49.99 for the first year that you decide to subscribe. Read on to see the new features.
Bing AI Chat may be serving bad and malicious websites via ads to the users. A new report tested Bing Ads and found it relatively easy for someone to inject malicious ads into Bing AI Chat.
Microsoft has revealed that a threat actor labeled Storm-0324 is distributing malware by using "phishing lures through Microsoft Teams chats" that could be used to launch ransomware attacks.
A cybersecurity team found a new Mac malware on the Dark Web forum using ChatGPT prompts. It prices up to $60,000 and can gain full access to a target's machine. Apple didn't immediately respond.
_medium.jpg)
The FBI has been accused of using NSO Group's spyware to track suspects in Mexico, despite Biden's ban on the use of commercial spyware. It claims it was misled by a private contractor.
Sophisticated Rust-based malware infecting Redis data stores to self-replicate and inject payloads into servers. Researchers at Cado Security decompiled the activities to get identifiable indicators.
Hackers have used a family of sophisticated malware to distribute malware ads through compromised verified Facebook pages. More than two months later, these malware ads are popping up again.
According to an alarming research, over 100,000 ChatGPT accounts have been compromised and are being traded on illicit dark web marketplaces. Affected regions include the U.S., India, and more.
Kremlin's concerns about US technology continue. Russia alleges the NSA used Apple iPhone vulnerabilities to spy on officials and civilians. And officials in Russia urged to stop using iPhones.
Security experts have raised warnings about Google's new .zip and .mov top-level domains because they look like file extensions and could be used maliciously. They are already being used in the wild.
The US Department of the Treasury has sanctioned a prolific ransomware actor, Mikhail Matveev. The Department of State will also offer a $10 million reward for info that leads to his arrest.
Meta is posting more info on new malware threats. It aims to inform users about recent malware behaviors, methods of penetration, and their effort towards disrupting the spread of malware.
The CERT Ukraine has warned about a new malicious campaign that is targeting Ukrainian officials. The campaign is essentially distributing fake Windows updates via Outlook domain mails.
When you are in public and your phone's battery gets low do you ever plug it into public charging stations? You could be at risk of juice jacking. Join us today to find out how to protect yourself.
A social experiment was conducted by a security research firm pitting humans against ChatGPT. This test simulated writing of phishing scam mail and human beings have emerged victorious, for now.
CloudSEK has discovered that threat actors are recently posting YouTube videos that "offer" cracked software downloads. They are even using AI-generated avatars to make the clips look legitimate.
A new research paper discovered 721.5 million credentials exposed online. According to the study, 50% of the data came from botnets that deployed information-stealing malware to victims' devices.
A new report from the security firm Mandiant claims that a group based in North Korea is posting fake job listings on LinkedIn that eventually results in malware being downloaded to a user's PC.
A ransomware variant commonly known to target Windows PCs has recently been found infecting Linux computers as well. The variant does this by exploiting a flaw in IBM's Aspera Faspex software.
Starting with Chrome version 111, the Chrome Cleanup Tool will be turned off for Windows users due to a decline in user complaints about unwanted software and improved defenses against malware.
A piece of cryptojacking malware was recently found hiding in pirated versions of Apple programs, such as Final Cut Pro and Logic Pro X. The malware can easily avoid detection through a script.
Microsoft locks Windows 11 user out, shows how easy losing data from forced encryption is
AMD releases new Windows 10 and 11 chipset driver for Ryzen processors
Latest Patch Tuesday has broken DHCP Server in all Windows Server editions
Here is a list of Samsung Galaxy watches that won't be supported after September 2025
Recommended by 
We're on Mastodon!
We're on Mastodon!