Malware

New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks

Leave a Comment / Malware /

SoumniBot is a new Android malware that targets South Korean users by taking advantage of flaws in the manifest extraction and parsing process. It has been discovered in the wild. Researchers at Kaspersky have identified the virus as “notable for an unconventional approach to evading analysis and detection, namely obfuscation of the Android manifest,” according […]

New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks Read More »

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials

Leave a Comment / Malware /

The banking trojan known as Mispadu now targets users in Italy, Poland, and Sweden in addition to Latin America (LATAM) and Spanish-speaking people. According to Morphisec, the campaign’s targets include businesses in the banking, services, automotive manufacturing, legal, and commercial sectors. According to a report released last week by security expert Arnold Osipov, “Mexico remains

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials Read More »

Russian Government Software Backdoored to Deploy Konni RAT Malware

Leave a Comment / Malware /

A backdoor has been included in an installer for a utility that is probably used by the Ministry of Foreign Affairs (MID)’s Russian Consular Department to distribute the remote access trojan Konni RAT (also known as UpDog). The investigation was conducted by German cybersecurity firm DCSO, which concluded that actors with ties to the Democratic

Russian Government Software Backdoored to Deploy Konni RAT Malware Read More »

Syrian Hackers are Giving Cybercriminals Access to a Covert C#-based Silver RAT.

Leave a Comment / Malware /

A remote access trojan (RAT) known as Silver RAT, developed by threat actors going by the moniker Anonymous Arabic, can run concealed apps covertly and evade security measures. Cybersecurity company Cyfirma stated in a research released last week that “the developers operate on multiple hacker forums and social media platforms, showcasing an active and sophisticated

Syrian Hackers are Giving Cybercriminals Access to a Covert C#-based Silver RAT. Read More »

Behind the Scenes of Matveev’s Ransomware Empire: Tactics and Team

Leave a Comment / Malware /

The inner workings of the ransomware operation headed by Russian national Mikhail Pavlovich Matveev, who was charged by the US government earlier this year for his claimed involvement in thousands of attacks worldwide, have been revealed by cybersecurity researchers. According to reports, Matveev—who goes by the identities Wazawaka, m1x, Boriselcin, Uhodiransomwar, Orange, and waza—lives in

Behind the Scenes of Matveev’s Ransomware Empire: Tactics and Team Read More »

SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities

Leave a Comment / Malware /

The threat actor with ties to Pakistan, SideCopy, has been seen using the WinRAR security flaw in its assaults against Indian government institutions to spread trojans that provide remote access, including DRat, Ares RAT, and AllaKore RAT. According to enterprise security firm SEQRITE, the campaign is multi-platform and includes attacks aimed at infiltrating Linux computers

SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities Read More »

HotRat: New AsyncRAT Malware Variant Spreading Via Pirated Software

Leave a Comment / Malware /

A new variant of AsyncRAT malware dubbed HotRat is being distributed via free, pirated versions of popular software and utilities such as video games, image and sound editing software, and Microsoft Office. According to Martin a Milánek, security researcher at Avast, “HotRat malware gives attackers a wide range of capabilities, including stealing login credentials, cryptocurrency

HotRat: New AsyncRAT Malware Variant Spreading Via Pirated Software Read More »

Cyclops Ransomware Gang Offers Go-Based Info Stealer to Cybercriminals

Leave a Comment / Malware /

Threat actors linked to the Cyclops ransomware have been seen promoting malware that is intended to steal sensitive information from compromised PCs. In a recent analysis, Uptycs noted that “the threat actor behind this [ransomware-as-a-service] promotes its offering on forums.” There, it demands a cut of the money made by anyone who use its virus

Cyclops Ransomware Gang Offers Go-Based Info Stealer to Cybercriminals Read More »

Fleckpe Android Malware Sneaks onto Google Play Store with Over 620,000 Downloads

Leave a Comment / Malware /

Since 2022, there have been over 620,000 downloads of Fleckpe, a new Android subscription virus, from the Google Play Store. According to Kaspersky, which discovered 11 apps on the official app storefront, the virus was portrayed as authentic picture editing, camera, and smartphone wallpaper packs. The apps have since been taken down. Although the Russian

Fleckpe Android Malware Sneaks onto Google Play Store with Over 620,000 Downloads Read More »

New S1deload Malware Hijacking Users’ Social Media Accounts and Mining Cryptocurrency

Leave a Comment / Malware /

Users of Facebook and YouTube are the target of an aggressive virus operation that uses a new information stealer to take over their accounts and use the networks’ resources to mine cryptocurrency. Due to its use of DLL side-loading strategies to circumvent security measures and execute its malicious components, Bitdefender has dubbed the virus S1deload

New S1deload Malware Hijacking Users’ Social Media Accounts and Mining Cryptocurrency Read More »