This devious malware is able to disable your antivirus
Hackers have found a way to disable antivirus programs by using vulnerable legitimate drivers......»»
Week in review: Cybersecurity job openings, hackers use 1-day flaws to drop custom Linux malware
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Transitioning to memory-safe languages: Challenges and considerations In this Help Net Security interview, Omkhar Arasaratnam, General Manager at th.....»»
MobSF: Open-source security research platform for mobile apps
The Mobile Security Framework (MobSF) is an open-source research platform for mobile application security, encompassing Android, iOS, and Windows Mobile. MobSF can be used for mobile app security assessment, penetration testing, malware analysis, and.....»»
Keyloggers, spyware, and stealers dominate SMB malware detections
In 2023, 50% of malware detections for SMBs were keyloggers, spyware and stealers, malware that attackers use to steal data and credentials, according to Sophos. Attackers subsequently use this stolen information to gain unauthorized remote access, e.....»»
Hackers leverage 1-day vulnerabilities to deliver custom Linux malware
A financially motivated threat actor is using known vulnerabilities to target public-facing services and deliver custom malware to unpatched Windows and Linux systems. Among the exploited vulnerabilities are also two recently discovered Ivanti Connec.....»»
Never-before-seen Linux malware gets installed using 1-day exploits
Discovery means that NerbianRAT is cross-platform used by for-profit threat group. Enlarge (credit: Getty Images) Researchers have unearthed Linux malware that circulated in the wild for at least two years before being i.....»»
Web-based PLC malware: A new potential threat to critical infrastructure
A group of researchers from Georgia Tech’s College of Engineering have developed web-based programmable logic controller (PLC) malware able to target most PLCs produced by major manufacturers. “Our Web-Based (WB) PLC malware resides in PL.....»»
Roku will disable your TVs and devices until you agree to its new terms
Blindly consenting to terms and conditions is something most of us have been guilty of at some point, but it’s not often that companies completely … The post Roku will disable your TVs and devices until you agree to its new terms appeared.....»»
How to block third-party iPhone app stores now that sideloading is a thing
I used to worry about the arrival of iPhone sideloading in Europe before I knew what Apple’s implementation would be like. Malware remains a threat … The post How to block third-party iPhone app stores now that sideloading is a thing appe.....»»
Silobreaker enhances threat intelligence platform with MITRE ATT&CK TTP detection capabilities
Silobreaker announced an integration with MITRE ATT&CK Matrix for Enterprise, Industrial Control Systems (ICS) and Mobile, to help organizations better understand threats associated with malware, threat actors and industries. This latest enhancement.....»»
Researchers create AI worms that can spread from one system to another
Worms could potentially steal data and deploy malware. Enlarge (credit: Jacqui VanLiew; Getty Images) As generative AI systems like OpenAI's ChatGPT and Google's Gemini become more advanced, they are increasingly being p.....»»
Cybercriminals harness AI for new era of malware development
The alliance between ransomware groups and initial access brokers (IABs) is still the powerful engine for cybercriminal industry, as evidenced by the 74% year-on-year increase in the number of companies that had their data uploaded on dedicated leak.....»»
Security Bite: Self-destructing macOS malware strain disguised as legitimate Mac app
Security researchers at Moonlock, the relatively new cybersecurity wing of MacPaw, have detected a new strain of macOS malware disguised as a legitimate Mac app that can destroy itself in certain conditions. At its worst, it can unknowingly extract c.....»»
Lazarus hackers return and hijack a Windows security flaw
North Korean hackers were seen disabling antivirus programs, possibly paving the way for more dangerous attacks......»»
Apple says video calling apps can choose to disable Reactions by default in iOS 17.4
With the release of iOS 17.4 and iPadOS 17.4, Apple will give video calling apps the option to turn off the new Reactions feature by default. This new Reactions feature debuted with iOS 17, iPadOS 17, and macOS Sonoma last year. The feature is ena.....»»
Cryptojacking is no longer the sole focus of cloud attackers
As commercial adoption of cloud technologies continues, cloud-focused malware campaigns have increased in sophistication and number – a collective effort to safeguard both large and small enterprises is critical, according to Cado Security. Docker.....»»
GitHub besieged by millions of malicious repositories in ongoing attack
GitHub keeps removing malware-laced repositories, but thousands remain. Enlarge (credit: Getty Images) GitHub is struggling to contain an ongoing attack that’s flooding the site with millions of code repositories. Thes.....»»
New Atomic Stealer malware variant harder to detect in macOS
The Atomic Stealer malware still relies on users installing fake software with a payload hidden in the .dmg file, but it is evolving to get harder to detect.Atomic Stealer infects macOS via illegitimate softwareAtomic Stealer hides in illegitimate so.....»»
Pikabot returns with new tricks up its sleeve
After a short hiatus, Pikabot is back, with significant updates to its capabilities and components and a new delivery campaign. About the Pikabot loader Pikabot is a loader – a type of malware whose primary function is to serve as a delivery me.....»»
ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708)
The recently patched vulnerabilities (CVE-2024-1709, CVE-2024-1708) in ConnectWise ScreenConnect software are being exploited by numerous attackers to deliver a variety of malicious payloads. About ConnectWise ScreenConnect ConnectWise ScreenConnect.....»»
It’s time to stop trusting your antivirus software
Antivirus software appears to be some of the most trustworthy, but Avast shows that may not always be the case......»»