Malware

Researchers Find Potential Way to Run Malware on iPhone Even When it’s OFF

Leave a Comment / Malware /

A first-of-its-kind security analysis of iOS Find My function has identified a novel attack surface that makes it possible to tamper with the firmware and load malware onto a Bluetooth chip that’s executed while an iPhone is “off.” The mechanism takes advantage of the fact that wireless chips related to Bluetooth, Near-field communication (NFC), and […]

Researchers Find Potential Way to Run Malware on iPhone Even When it’s OFF Read More »

Hackers Infiltrate Resumes Sent to Corporate Hiring Managers With the ‘More Eggs’ CVWARE.

Leave a Comment / Malware /

A year after potential candidates looking for work on LinkedIn were tempted with weaponized job offers, a new series of phishing assaults carrying the more eggs malware has been detected attacking corporate hiring supervisors with false resumes as an infection vector thus making it dubbed ‘the CV-WARE’ by Sly Uduosa, Slytech’s research lead. “This year,

Hackers Infiltrate Resumes Sent to Corporate Hiring Managers With the ‘More Eggs’ CVWARE. Read More »

Access:7 Supply Chain Vulnerability Impacting ATMs, Medical and IoT Devices

Leave a Comment / Malware /

As many as seven vulnerabilities have been disclosed in PTC’s Axeda software which could be weaponized to access medical and IoT devices without authorization. Popular known as Access:7, with weaknesses of which 3 are rated Critical in severity with the potential of affecting over 150 device models spanning over 100 different manufacturers which makes it

Access:7 Supply Chain Vulnerability Impacting ATMs, Medical and IoT Devices Read More »

Xenomorph Android Banking Trojan Now Spreading on Google Play Store

Leave a Comment / Malware /

A new Android trojan has been observed to be distributed via the official Google Play Store with the goal of targeting 56 European banks and carrying out harvesting sensitive information from compromised devices. The trojan has been nicknamed Xenomorph and its noticed to share overlaps with another banking trojan tracked under the moniker Alien while

Xenomorph Android Banking Trojan Now Spreading on Google Play Store Read More »

Microsoft Takes Steps to Disable Macros in Office Apps by Default to Block Malware Attacks

Leave a Comment / Malware /

Microsoft announces plans to disable Visual Basic for Applications (VBA) macros by default across its products, including Word,Excel, PowerPoint, Access and Visio for documents downloaded from the web in an attempt to eliminate an entire class of attack vector. “Bad actors send macros in Office files to end users who unknowingly enable them, malicious payloads

Microsoft Takes Steps to Disable Macros in Office Apps by Default to Block Malware Attacks Read More »

New Techniques Adopted By SolarMarker To Maintain Presence On Hacked Systems

Leave a Comment / Malware /

As threat actors continuously change pattern, the operators of the SolarMarker information stealer and backdoor have been discovered to be leveraging stealthy tricks to establish long-term persistence on compromised systems. This was spotted by Sophos a cybersecurity firm, wherein they observed that the remote access implants are still being detected on targeted networks despite the

New Techniques Adopted By SolarMarker To Maintain Presence On Hacked Systems Read More »

Researchers Discover Strategic Similarities b/w Notpeya and WhisperGate Attatcks

Leave a Comment / Malware /

The wiper malware which attacked dozens of Ukranian agencies earlier this month has been analysed thus revealing “strategic similarities” to NotPetya malware that was unleashed against the country’s infrastructure and elsewhere in 2017. WhisperGate as it is been called was discovered by Micrfosoft last week, which said it observed the destructive cyber campain targeting government,

Researchers Discover Strategic Similarities b/w Notpeya and WhisperGate Attatcks Read More »

New PseudoManuscrypt Malware Currently Infecting Computers

Leave a Comment / Malware /

A new malware called PseudoManyscrypt has been observed attacking industrial and government organizations including enterprises in the military-industrial complex and research laboratories. The name is derived from its similarities to the Manuscrypt malware which is part of trhe Lazarus APT groups attack toolset and the series of intrusion was first detected in June 2021. It

New PseudoManuscrypt Malware Currently Infecting Computers Read More »

Another Bitcoin Mining Malware Targets QNAP NAS Devices

Leave a Comment / Malware /

QNAP the Network-attached storage (NAS) appliance maker has released a new advisory warning of a cryptocurrency mining malware targeting devices. This is a bitcoin miner which target QNAP NAS. Once a NAS is infected, CPU usage becomes unusually high where a process named ‘[oom_reaper]’ could occupy around 50% of the total CPU usage,” the Taiwanese

Another Bitcoin Mining Malware Targets QNAP NAS Devices Read More »

Researchers Discover Payment Data Stealing Malware Hiding in Nginx Process

Leave a Comment / Malware /

A new form of malware hits E-commerce platforms in the U.S., Germany and France this malware is said to be targeting Nginx servers in an attempt to masquerade its presence and slip past detection by security solutions. Sansec Threat Research team have stated in a recent report that “this novel code injects itself into a

Researchers Discover Payment Data Stealing Malware Hiding in Nginx Process Read More »