Sextortion Rears Its Ugly Head Again
Attackers are sending email blasts with malware links in embedded PDFs as a way to evade email filters, lying about having fictional "video evidence."
A new French-language sextortion campaign is...
Cyberattackers Cook Up Employee Personal Data Heist for Meyer
The Conti gang breached the cookware giant’s network, prepping thousands of employees’ personal data for consumption by cybercrooks.
Meyer Corp., maker of Farberware and the largest cookware and bakeware distributor...
Gaming, Banking Trojans Dominate Mobile Malware Scene
The overall number of attacks on mobile users is down, but they’re getting slicker, both in terms of malware functionality and vectors, researchers say.
The number of cyberattacks launched...
Iranian State Broadcaster Clobbered by ‘Clumsy, Buggy’ Code
Researchers said a Jan. 27 attack that aired footage of opposition leaders calling for assassination of Iran’s Supreme Leader was a clumsy and unsophisticated wiper attack.
Footage of opposition leaders...
Xenomorph Malware Burrows into Google Play Users, No Facehugger Required
Researchers discovered a new, modular banking trojan with ties to Cerberus and Alien that has the capability to become a much larger threat than it is now.
An Android...
Baby Golang-Based Botnet Already Pulling in $3K/Month for Operators
Newborn as it is, the Kraken botnet has already spread like wildfire, thanks to the malware’s author tinkering away over the past few months, adding more infostealers and backdoors....
Ukrainian DDoS Attacks Should Put US on Notice–Researchers
On Tuesday, institutions central to Ukraine’s military and economy were hit with denial-of-service (DoS) attacks. Impact was limited, but the ramifications are not.
On Tuesday, institutions central to Ukraine’s military...
Emotet Now Spreading Through Malicious Excel Files
An ongoing malicious email campaign that includes macro-laden files and multiple layers of obfuscation has been active since late December.
The infamous Emotet malware has switched tactics yet again, in...
Massive LinkedIn Phishing, Bot Attacks Feed on the Job-Hungry
The phishing attacks are spoofing LinkedIn to target ‘Great Resignation’ job hunters, who are also being preyed on by huge data-scraping bot attacks.
Emotionally vulnerable and willing to offer...
SquirrelWaffle Adds a Twist of Fraud to Exchange Server Malspamming
SquirrelWaffle attackers now use typosquatting to keep sending spam, even after Exchange servers are patched for ProxyLogon/ProxyShell.
SquirrelWaffle – the newish malware loader that first showed up in September –...
