New research by Include Security and independent researcher Buchodi has revealed how Bright Data, one of the world’s largest residential proxy providers, uses software embedded in free apps to turn users’ devices into internet relay points for web-scraping activities. Bright Data, which claims to operate a residential proxy network of more than 400 million IP […]
Free Apps Are Hacking Smart TVs Read More »
OpenAI has revealed that it disrupted three separate clusters of malicious activity where its ChatGPT AI tool was being exploited to aid malware development. One cluster involved a Russian-speaking actor who used ChatGPT to help design and refine a remote access trojan (RAT) aimed at stealing credentials while evading detection. The operator employed multiple ChatGPT
OpenAI Disrupts Global Malware Networks Exploiting ChatGPT Read More »
A newly discovered remote access trojan and information stealer that Iranian state-sponsored attackers employ to survey compromised endpoints and carry out malicious orders has been made public by cybersecurity experts. The malware has been identified in the wild since at least September 1, 2023, according to artefacts posted to the VirusTotal website, and the cybersecurity
Iranian Hackers Deploy WezRat Malware to Attack Isreal Read More »
According to court records made public as part of a continuing legal battle between NSO Group and Meta’s WhatsApp, the Israeli spyware vendor delivered Pegasus via a number of flaws directed at the messaging service, including one that it continued to employ even after being sued by Meta for doing so. They also demonstrate how,
NSO Group Exploited WhatsApp to Install Pegasus Spyware Read More »
A 17-year-old Walsall kid has been taken into custody by British law enforcement on suspicion of being a member of the infamous Scattered Spider cybercrime ring. “In connection with a global cyber online crime group which has been targeting large organisations with ransomware and gaining access to computer networks,” West Midlands police said, the arrest
17 Years Old Hacker Arrested in U.K. Read More »
An ongoing effort of cryptojacking has been brought to light by cybersecurity researchers, which mines Dero money using misconfigured Kubernetes systems. The activity was made public by cloud security company Wiz, which stated it was an enhanced version of a financially driven operation that CrowdStrike had initially reported on in March 2023. Wiz researchers Avigayil
Cryptojacking Campaign Targets Misconfigured Kubernetes Clusters Read More »
A “multi-faceted campaign” has been observed that uses reputable services such as GitHub and FileZilla to propagate a variety of banking trojans and stealer malware, including Vidar, Atomic (also known as AMOS), Lumma (also known as LummaC2), and Octo, by posing as reliable programmes such as 1Password, Bartender 5, and Pixelmator Pro. “The presence of
Hackers Exploit GitHub and FileZilla to Deliver Malware Cocktail Read More »
It has been noted that malicious Android apps that pose as Google, Instagram, Snapchat, WhatsApp, and X (previously Twitter) can steal user credentials from devices that have been hijacked. In a recent analysis, the threat research team at SonicWall Capture Labs stated that “this malware uses famous Android app icons to mislead users and trick
Malicious Android Apps Pose as Google, Instagram, WhatsApp to Steal Credentials Read More »
Researchers studying cybersecurity have uncovered a yet unreported malware that targets Android smartphones and evades detection by using hacked WordPress websites as relays for its real command-and-control (C2) servers. Code-named Wpeeper, the malware is an ELF binary that uses HTTPS to encrypt its C2 communications. “Wpeeper is a typical backdoor Trojan for Android systems, supporting
Android Virus Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers Read More »
SoumniBot is a new Android malware that targets South Korean users by taking advantage of flaws in the manifest extraction and parsing process. It has been discovered in the wild. Researchers at Kaspersky have identified the virus as “notable for an unconventional approach to evading analysis and detection, namely obfuscation of the Android manifest,” according
New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks Read More »
