Cybersecurity

Is Your Crypto Safe? XPhase Clipper Malware Steals Coins with a Click

A new strain of malware dubbed XPhase Clipper has been stealthily targeting cryptocurrency users. This Clipper malware infiltrates unsuspecting victims’ systems through deceptive websites masquerading as authentic cryptocurrency platforms.  Source: Cyble Cybersecurity experts at Cyble Research and Intelligence Labs (CRIL) have found this concerning trend where a large-scale operation is using cloned YouTube videos to […]

Cybersecurity

ResumeLooters Gang Steals User Info from Retail and Job Sites

Security researchers have uncovered a major data theft campaign targeting users of employment agency and retail websites mainly in APAC. Dubbed “ResumeLooters” by Group-IB, the gang was first detected in November 2023. It compromised 65 websites in November and December last year using SQL injection attacks (SQLi), as well as injecting cross-site scripting (XSS) scripts […]

Cybersecurity

Malicious ads for restricted messaging applications target Chinese users | Malwarebytes

An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram or LINE with the intent of dropping malware. Interestingly, software like Telegram is heavily restricted and was previously banned in China. Many Google services, including Google search, are also either restricted or heavily censored in […]

Cybersecurity

Malicious Ads on Google Target Chinese Users with Fake Messaging Apps

Jan 26, 2024NewsroomMalvertising / Phishing-as-a-service Chinese-speaking users have been targeted by malicious Google ads for restricted messaging apps like Telegram as part of an ongoing malvertising campaign. “The threat actor is abusing Google advertiser accounts to create malicious ads and pointing them to pages where unsuspecting users will download Remote Administration Trojan (RATs) instead,” Malwarebytes’ […]

Cybersecurity

Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software

Jan 19, 2024NewsroomMalware / Endpoint Security Pirated applications targeting Apple macOS users have been observed containing a backdoor capable of granting attackers remote control to infected machines. “These applications are being hosted on Chinese pirating websites in order to gain victims,” Jamf Threat Labs researchers Ferdous Saljooki and Jaron Bradley said. “Once detonated, the malware […]

Cybersecurity

Adalanche: Open-source Active Directory ACL visualizer, explorer – Help Net Security

Adalanche provides immediate insights into the permissions of users and groups within an Active Directory. It’s an effective open-source tool for visualizing and investigating potential account, machine, or domain takeovers. Additionally, it helps identify and display any misconfigurations. What unique features make Adalanche stand out? “The best feature is the low user effort to get […]