Once-hobbled Lumma Stealer is back with lures that are hard to resist

The FBI and an international coalition of its counterparts took action early last year. In May, they said they seized 2,300 domains, command-and-control infrastructure, and crime marketplaces that had ...

LummaStealer infections surge after CastleLoader malware campaigns

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.
Arabian Post

Screensaver malware revives stealthy access tactic

Attackers are distributing Windows screensaver files, identifiable by the. scr extension, through carefully tailored phishing ...
Dark Reading

Attackers Use Windows Screensavers to Drop Malware, RMM Tools

By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," ...

EDR killer tool uses signed kernel driver from forensic software

Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in ...
CSO Online

Notepad++ infrastructure hijacked by Chinese APT in sophisticated supply chain attack

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.
Infosecurity-magazine.com

Researchers Uncover PDFSIDER Malware Built for Long-Term, Covert System Access

A newly identified malware strain built for covert, long-term access to compromised systems has been documented in recent security research. Dubbed PDFSIDER by Resecurity, the threat is delivered ...
The Hacker News

Search results for PrivateLoader malware | Breaking Cybersecurity News | The Hacker News

With PPI malware services such as PrivateLoader, malware operators pay the service owners to get their payloads "installed" based on the targets provided. "The accessibility and moderate costs allow ...
InfoQ

Spec Driven Development: When Architecture Becomes Executable

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
9to5Mac

Mosyle identifies one of the first known AI-assisted Mac malware threats

Mosyle, a popular Apple device management and security firm, has exclusively shared details with 9to5Mac on a previously unknown macOS malware campaign. While crypto miners on macOS aren’t anything ...
HotHardware

This Fake Windows BSOD Is Actually A Malware Trap

Windows users will need to be a bit more cautious, as researchers at security firm Securonix have uncovered a new ClickFix malware campaign, dubbed PHALT#BLYX, targeting Microsoft’s operating system.
HotHardware

DarkSpectre Malware Campaign Infected 8.8 Million Chrome, Edge & Firefox Users

Security researchers at Koi have uncovered a massive, coordinated spyware campaign that spans 100+ Google Chrome, Microsoft Edge, and Mozilla FireFox extensions, which seem to function legitimately, ...