Malvertising through search engines
Kaspersky observes a growth in malvertising activity that exploits Google search ads to promote fake software websites that deliver stealers, such as RedLine and Rhadamantys.
Inadequate patches and advisories increase cyber risk
Trend Micro’s overall threat detections increased by 55%, and the number of blocked malicious files surged by 242% due to indiscriminate targeting by threat actors who went after both consumers and organizations in all sectors. Trends for 2022 an…
BlackLotus UEFI bootkit Can Bypass Secure Boot on Windows
By Deeba Ahmed
Security firm ESET’s cybersecurity researchers have shared their analysis of the world’s first UEFI bootkit being used in…
This is a post from HackRead.com Read the original post: BlackLotus UEFI bootkit Can Bypass Secu…
Phishing Attack Uses UAC Bypass to Drop Remcos RAT Malware
By Deeba Ahmed
Currently, scammers are using DBatLoader malware loader to distribute Remcos RAT to businesses and institutions across Eastern Europe.
This is a post from HackRead.com Read the original post: Phishing Attack Uses UAC Bypass to Drop Remc…
BlackLotus Malware Hijacks Windows Secure Boot Process
Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully updated versions of Windows.”
Dubbed BlackLotus, the malware is what’s known as a UEFI bootkit. These sophisticated pieces of malware target the UEFI—short for Unified Extensible Firmware Interface—the low-level and complex chain of firmware responsible for booting up virtually every modern computer. As the mechanism that bridges a PC’s device firmware with its operating system, the UEFI is an OS in its own right. It’s located in an …
China-linked APT Sharp Panda targets government entities in Southeast Asia
China-linked APT group Sharp Panda targets high-profile government entities in Southeast Asia with the Soul modular framework. CheckPoint researchers observed in late 2022, a campaign attributed to the China-linked APT group Sharp Panda that is targeting a high-profile government entity in the Southeast Asia. The state-sponsored hackers used a new version of the SoulSearcher loader, which eventually loads a new […]
The post China-linked APT Sharp Panda targets government entities in Southeast Asia appeared first on Security Affairs.
Microsoft Found Shein App Copying Clipboard Content on Android Phones
By Waqas
An old version of the Shein app was found to be accessing and copying clipboard content on Android devices before being detected and reported by Microsoft to Google.
This is a post from HackRead.com Read the original post: Microsoft Found Shei…
SYS01 stealer targets critical government infrastructure
Researchers discovered a new info stealer dubbed SYS01 stealer targeting critical government infrastructure and manufacturing firms. Cybersecurity researchers from Morphisec discovered a new, advanced information stealer, dubbed SYS01 stealer, that since November 2022 was employed in attacks aimed at critical government infrastructure employees, manufacturing companies, and other sectors. The experts found similarities between the SYS01 stealer and another […]
The post SYS01 stealer targets critical government infrastructure appeared first on Security Affairs.
Chinese Sharp Panda Group Unleashes SoulSearcher Malware
By Waqas
Currently, in its cyber espionage campaign, Sharp Panda hackers are targeting government entities in Asia.
This is a post from HackRead.com Read the original post: Chinese Sharp Panda Group Unleashes SoulSearcher Malware
CrowdStrike: Attackers focusing on cloud exploits, data theft
CrowdStrike’s new threat report sees a big increase in data theft activity, as attackers move away from ransomware and other malware attacks, as defense gets better, and the value of data increases.
The post CrowdStrike: Attackers focusing on cloud exp…