_16_by_9_cropped_medium.jpg)
"Made on Windows 11 Alpha" themed malicious Microsoft Word documents have been discovered by the security researchers at Anomali. The maldoc implements VBA macros to deliver a JavaScript payload.
MalwareRSS
_medium.jpg)
A new Ursnif 2021 variant, which is a known banking trojan, is infecting victim machines by disguising itself as a reCAPTCHA test, which leads the victim to unknowingly download the malware.
A new eCh0raix ransomware variation has been infecting NAS devices since last year according to a report. The new variant can now attack both QNAP and Synology NAS systems simultaneously.
Kaspersky has issued an advisory about people getting their machines infected with malware by downloading fake Windows 11 installers like "86307_windows 11 build 21996.1 x64 + activator.exe".
After releasing mitigations for a cyberattack that utilizes "DevilsTongue" malware developed by an Israeli company recently, Microsoft says that it is cracking down on private-state offensive actors.
Microsoft has issued an advisory about a cyberattack from a Chinese group targeting SolarWinds' products. A hotfix has been released but organizations are still advised to review guidance.
Malicious activity from Nobelium - which has been previously linked to the Russian foreign intelligence agency and the SolarWind attacks - has been detected. Microsoft has issued an advisory.
The official Python software repository, PyPI, was discovered to host six packages that would download and install cryptomining software on affected systems according to a new report.
Apple has detailed the threats that sideloading of apps poses on user privacy and security. An executive has also stated that iOS is not the platform for you if you want to engage in this activity.
Google is rolling out security enhancements to the Enhanced Safe Browsing experience in Chrome 91. The browser will inform you which extensions are trusted and will also scan risky files on demand.
After another Nobelium cyberattack, Microsoft has emphasized the need to differentiate between "espionage as usual" acts and crippling attacks like SolarWinds. It has encouraged cloud adoption too.
Defending Apple's tight control over iOS in court today, the firm's chief of software Craig Federighi said that macOS with its lighter controls on app installs has an unacceptable amount of malware.
MSI has warned that malicious actors are using a fake download page for MSI's Afterburner tool to distribute malware. The official webpage for the software is currently unavailable.
Microsoft Defender for Endpoint has been enhanced using advancements in Intel Threat Detection Technology to detect cryptojacking attacks via machine learning heuristics based on CPU telemetry.
In a sort of "year in review" for 2020, Google has disclosed some of the methods it enforced to combat the distribution of malicious content in the Play Store, along with some accompanying statistics.
Researchers have discovered a new Android malware that could collect personal user data hidden in a fake Netflix app on the Google Play Store. The malware also spread using WhatsApp.
_-_img_1104_medium.jpg)
Facebook has disrupted a cyber espionage operation being carried out against Uyghur activists living abroad. The malicious activity has been attributed to a sophisticated Chinese hacking group.
Microsoft has enabled runtime inspection of XLM macros in Microsoft Excel. The macro language is a legacy piece of technology from 1992 still used by some companies, but is under attack now.
Recently, a mysterious new macOS malware was spotted in the wild which has infected nearly 30,000 Intel and M1 Macs. Apple is now deploying countermeasures to mitigate the potential threat.
A new strain of macOS malware is raising some alarms in the security industry due to its highly sophisticated mechanisms of distribution, self-destruction, and the mysterious lack of a payload.
Microsoft Defender for Endpoint is falsely flagging the latest Chrome update released yesterday as a Funvalget backdoor. Some reports suggest that an updated definition has fixed the false positive.
Microsoft has issued a warning about a highly dangerous malware family infecting Chrome, Edge, Firefox, and Yandex to insert ads into search results. On Firefox, it also steals user credentials.
Printer driver files from Dell are being flagged as unsafe by anti-virus engines like Avast, McAfee, Fortinet, and more. Logs on Virus Total suggest that they are flagged as malware and trojans.
Nokia has released the latest edition of its Threat Intelligence Report. The document reveals that cyberattacks on IoT devices are increasing at an alarming rate due to poor security.
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. This free offer expires today!
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. Claim yours before the offer expires!
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. Claim yours before the offer expires!
A recently-discovered strand of Android malware has been infecting devices since 2016, resorting to various techniques to steal all kinds of user data while remaining a secret to most users.
A ransomware Android app has been discovered which poses as a COVID-19 tracker app. It locks users out of their device and threatens to delete their data if the user does not pay $100 in bitcoin.
Thoma Bravo, a private equity firm, has announced its acquisition of the cybersecurity firm Sophos. Sophos' stockholders agreed to the takeover in December. Sophos was sold for $3.9 billion in cash.
Before being patched, the encryption vulnerability dubbed 'Kr00k', could have affected over a billion devices running Broadcom and Cyprus chipsets, including the iPhone and Samsung Galaxy lineup.
Google is improving its malware detection capabilities for Gmail with the addition of deep learning to its document scanner. The new technology is currently used to scan Office documents only for now.
A newly discovered version of the Emotet Trojan has been observed to be spreading through Wi-Fi networks by using brute-force. The spread can be prevented by using strong, complex Wi-Fi passwords.
A UMX phone sold by the United States government-funded Assurance Wireless for $35 comes with two malware pre-installed. One of them hides in the Settings app and shows ads on the lock screen.
A paper released by the cybersecurity firm Dragos theorizes that the Russian hackers exploited a key safety component thereby endangering the lives of the people present on the transmission station.
The document-scanning app has now returned to the Play Store with an updated version, after being removed by Google last week due to malicious code being found in the app by security researchers.
Microsoft released a patch for critical security vulnerability BlueKeep earlier in May. Given the possibility of a large-scale outbreak, the company is advising users to update their systems.
The breach, which remained undetected for more than a year, allowed hackers to infect archived installers with malware. The developers recommend that users run a virus scan on their systems.
A new form of malware, dubbed 'Agent Smith', is reported to have infected around 25 million Android devices in Asian countries, as well as in the U.S., UK, and Australia, disguised as a Google tool.
It has been revealed that Yandex was attacked in October and November last year with Regin malware that is thought to be developed by Five Eyes nations including the United Kingdom and United States.
Recommended by 
