News

CISA open-sources Thorium platform for malware, forensic analysis
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) today announced the public availability of Thorium, an ...
Inside a Real Clickfix Attack: How This Social Engineering Hack Unfolds
ClickFix abuses clipboards. FileFix hijacks File Explorer. Both social engineering attacks start in the browser—and end in ...
AI Turns Panda Image Into ‘New Breed of Persistent Malware’
AI-assisted malware named Koske is hidden inside panda images, silently hijacking Linux machines for crypto mining while ...
Decrypt3d
Steam Game Loaded With Malware That Targets Crypto Wallets, Harvests Personal Info
PC game Chemia appears to have been removed from Steam after a cybersecurity firm said the game was loaded with ...
TechJuice6d
Hackers Exploit YouTube, Discord to Deploy Info-Stealing Malware
New malware campaign hijacks YouTube and Discord to lure users into installing info-stealing payloads like RedLine and Lumma.
Malware sneaks onto Steam, for the third time this year
Yet another Early Access Steam game was caught distributing malware, but this time the developer might be a victim too.
CSO Online7d
AI-forged panda images hide persistent cryptomining malware ‘Koske’
The Linux malware campaign leverages AI-generated code and weaponized panda JPEGs to deploy stealthy and persistent ...
Comeback of Lumma and NoName057(16): Cybercrime bust failed
Two threats are back. According to a warning from the US authorities, Interlock ransomware is a new addition. An overview of ...
WeLiveSecurity8d
Rogue CAPTCHAs: Look out for phony verification pages spreading malware
Before rushing to prove that you're not a robot, watch out for deceptive human verification pages as an increasingly popular ...
SecurityWeek9d
Organizations Warned of Interlock Ransomware Attacks
The US government has issued an alert on the Interlock ransomware, which targets organizations via drive-by download attacks.
SecurityWeek9d
Lumma Stealer Malware Returns After Takedown Attempt
The Lumma Stealer is back after Microsoft and law enforcement took action to significantly disrupt the malware’s ...
The Hacker News15d
Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner
A new attack uses CVE-2021-41773 in Apache HTTP Server to install a cryptocurrency miner via compromised websites.