Security News

North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks

2025-02-13 14:26

A nation-state threat actor with ties to North Korea has been linked to an ongoing campaign targeting South Korean business, government, and cryptocurrency sectors. The attack campaign, dubbed...

#cyberattack #dropbox #korea #northkorean #powershell #southkorea

DPRK hackers dupe targets into typing PowerShell commands as admin

2025-02-12 18:56

North Korean state actor 'Kimsuky' (aka 'Emerald Sleet' or 'Velvet Chollima') has been observed using a new tactic inspired from the now widespread ClickFix campaigns. [...]

#hacker #powershell

North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack

2025-02-12 10:43

The North Korea-linked threat actor known as Kimsuky has been observed using a new tactic that involves deceiving targets into running PowerShell as an administrator and then instructing them to...

#cyberattack #exploit #hacker #northkorean #powershell

Silent Lynx Using PowerShell, Golang, and C++ Loaders in Multi-Stage Cyberattacks

2025-02-05 12:46

A previously undocumented threat actor known as Silent Lynx has been linked to cyber attacks targeting various entities in Kyrgyzstan and Turkmenistan. "This threat group has previously targeted...

#cyberattack #multi #powershell

Telegram captcha tricks you into running malicious PowerShell scripts

2025-01-22 20:35

Threat actors on X are exploiting the news around Ross Ulbricht to direct unsuspecting users to a Telegram channel that tricks them into executing PowerShell code that infects them with malware. [...]

#captcha #powershell #telegram

OneDrive Phishing Scam Tricks Users into Running Malicious PowerShell Script

2024-07-30 06:45

Cybersecurity researchers are warning about a new phishing campaign that targets Microsoft OneDrive users with the aim of executing a malicious PowerShell script. The cybersecurity company is tracking the "Crafty" phishing and downloader campaign under the name OneDrive Pastejacking.

#onedrive #phishing #powershell #scam

ViperSoftX malware covertly runs PowerShell using AutoIT scripting

2024-07-10 19:22

The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection. [...]

#malware #powershell

Fake IT support sites push malicious PowerShell scripts as Windows fixes

2024-06-30 14:21

Fake IT support sites promote malicious PowerShell "Fixes" for common Windows errors, like the 0x80070643 error, to infect devices with information-stealing malware. According to eSentire, threat actors are creating numerous fake IT support sites that are specifically designed to help users with common Windows errors, heavily focusing on the 0x80070643 error.

#powershell #windows

New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration

2024-06-20 08:09

A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised...

#bypass #exfiltration #malware #powershell

That PowerShell 'fix' for your root cert 'problem' is a malware loader in disguise

2024-06-19 07:27

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

#cert #malware #powershell #root

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News