Security News > 2024 > September > Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack
2024-09-04 05:31
A new malware campaign is spoofing Palo Alto Networks' GlobalProtect VPN software to deliver a variant of the WikiLoader (aka WailingCrab) loader by means of a search engine optimization (SEO) campaign. The malvertising activity, observed in June 2024, is a departure from previously observed tactics wherein the malware has been propagated via traditional phishing emails, Unit 42 researchers
News URL
https://thehackernews.com/2024/09/hackers-use-fake-globalprotect-vpn.html
Related news
- IPany VPN breached in supply-chain attack to push custom malware (source)
- Ivanti zero-day attacks infected devices with custom malware (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Russia-Linked Hackers Target Kazakhstan in Espionage Campaign with HATVIBE Malware (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- WP3.XYZ malware attacks add rogue admins to 5,000+ WordPress sites (source)
- Hackers leak configs and VPN credentials for 15,000 FortiGate devices (source)
- Hackers Hide Malware in Images to Deploy VIP Keylogger and 0bj3ctivity Stealer (source)
- PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack (source)
- Stealthy 'Magic Packet' malware targets Juniper VPN gateways (source)