Attackers use dynamic code loading to bypass Google Play store’s malware detections

GlobalDefenseBot 4 August

3 minutes

Threat actors rely on the ‘versioning’ technique to evade malware detections of malicious code uploaded to the Google Play Store. Google Cybersecurity Action Team (GCAT) revealed that threat actors are using a technique called versioning to evade malware detection implemented to detect malicious code uploaded to the Google Play Store. The technique is not new […]

The post Attackers use dynamic code loading to bypass Google Play store’s malware detections appeared first on Security Affairs.

Mysterious Team Bangladesh Hackers Launched 750 DDoS Attacks and Hacked 78 Website

CySecBot 4 August

1 minute

The notorious Hacktivists group, Known as Mysterious Team Bangladesh, exploits vulnerable versions of PHPMyAdmin and WordPress. It conducts DDoS and defacement attacks through open-source utilities and is believed to have carried out over 750 DDoS and …

New AI Threats Emerge as FraudGPT Creator Unleashes DarkBERT and DarkBART

CySecBot 4 August

4 minutes

New AI-powered cybercrime tools suggest that the capability of AI hacking tools may be evolving rapidly. The creator of FraudGPT, and potentially also WormGPT, is actively developing the next generation of cybercrime chatbots with much more advanced capabilities. Daniel Kelley, a reformed black hat hacker and researcher at cybersecurity firm SlashNext, posed as a potential […]

The post New AI Threats Emerge as FraudGPT Creator Unleashes DarkBERT and DarkBART appeared first on eSecurityPlanet.

Researchers Leverage ChatGPT to Expose Notorious macOS Malware

CySecBot 3 August

1 minute

By Habiba Rashid
Dubbed HVNC, the malware is being sold on a Russian hacker and cybercrime forum for $60,000.
This is a post from HackRead.com Read the original post: Researchers Leverage ChatGPT to Expose Notorious macOS Malware

What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot

CySecBot 3 August

6 minutes

In this report, we share our recent crimeware findings: the new DarkGate loader, new LokiBot campaign and new Emotet version delivered via OneNote.

breaking news

Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks

GlobalDefenseBot 2 August

4 minutes

Researchers warn that hundreds of Citrix servers have been hacked in an ongoing campaign exploiting the RCE CVE-2023-3519. Security researchers from the non-profit organization Shadowserver Foundation reported that hundreds of Citrix Netscaler ADC and Gateway servers have already been compromised as part of an ongoing campaign exploiting the critical remote code execution (RCE) vulnerability CVE-2023-3519. […]

The post Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks appeared first on Security Affairs.

NodeStealer 2.0 Poses as ‘Microsoft’ to Hack Facebook and Browser Data

CySecBot 2 August

1 minute

By Deeba Ahmed
NodeStealer 2.0 is a variant of the NodeStealer infostealing malware, which was taken down by Meta in May 2023.
This is a post from HackRead.com Read the original post: NodeStealer 2.0 Poses as ‘Microsoft’ to Hack Facebook an…

Users of Facebook for Business are the Target of a New Phishing Attack

CySecBot 2 August

1 minute

An unreported phishing campaign that disseminated a Python version of the NodeStealer has been found. NodeStealer gave threat actors the ability to steal browser cookies and use them to hijack users’ accounts on the platform, with a focus on…

Beware! Hacker-Sold macOS HVNC Tool Allows Complete Takeover

CySecBot 2 August

1 minute

Threat actors targeting macOS have increased lately as there were several cases of macOS information stealer malware found in the past, and many are being currently exploited in the wild. According to reports, there was a new macOS malware found that …

Bad Actor Uses Fake Android Chat to Install Malware

CySecBot 2 August

1 minute

Researchers at CYFIRMA warn that the Bahamut threat actor is using a malicious Android app to deliver malware.