Security News

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data
2024-11-21 06:34

Threat hunters are warning about an updated version of the Python-based NodeStealer that's now equipped to extract more information from victims' Facebook Ads Manager accounts and harvest credit...

New Stealthy BabbleLoader Malware Spotted Delivering WhiteSnake and Meduza Stealers
2024-11-18 16:48

Cybersecurity researchers have shed light on a new stealthy malware loader called BabbleLoader that has been observed in the wild delivering information stealer families such as WhiteSnake and...

Swiss cheesed off as postal service used to spread malware
2024-11-16 07:07

QR codes arrive via an age-old delivery system Switzerland's National Cyber Security Centre (NCSC) has issued an alert about malware being spread via the country's postal service.…

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
2024-11-16 06:25

A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet's FortiClient for Windows to extract VPN credentials as part of a modular framework called DEEPDATA....

Botnet exploits GeoVision zero-day to install Mirai malware
2024-11-15 19:39

A malware botnet is exploiting a zero-day vulnerability in end-of-life GeoVision devices to compromise and recruit them for likely DDoS or cryptomining attacks. [...]

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations
2024-11-15 17:57

Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian state-sponsored actors to conduct reconnaissance of compromised endpoints and...

Cyber crooks push Android malware via letter
2024-11-15 13:23

Cyber crooks are trying out an interesting new approach for getting information-stealing malware installed on Android users’ smartphones: a physical letter impersonating MeteoSwiss (i.e.,...

Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
2024-11-14 22:22

Plus a bonus hard-coded local API key A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or malware on a vulnerable Windows...

New Glove infostealer malware bypasses Chrome’s cookie encryption
2024-11-14 20:47

​New Glove Stealer information-stealing malware can bypass Google Chrome's Application-Bound (App-Bound) encryption to steal browser cookies. [...]

New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
2024-11-14 09:51

Threat actors have been found leveraging a new technique that abuses extended attributes for macOS files to smuggle a new malware called RustyAttr. The Singaporean cybersecurity company has...