Security Affairs

MARCH 16, 2025

CISA adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog GitLab addressed critical auth bypass flaws in CE and EE North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilities Meta warns of actively exploited (..)

Spyware 74

Spyware Cybercrime Ransomware IoT 74

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. Other malware.

Phishing 133

Phishing Spyware Firmware Malware 133

Security Affairs

FEBRUARY 23, 2025

from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Every week the best security articles from Security Affairs are free in your email box. Lazarus APT stole $1.5B

Malware 67

Malware Scams Encryption Phishing 67

Security Affairs

APRIL 20, 2025

infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js

Data breaches 61

Data breaches Malware Phishing Hacking 61

SecureList

MARCH 3, 2022

Since H1 2020, we have seen increases in the percentages of ICS computers on which the following types of objects were blocked: Spyware – by a factor of 1.4 — from 5.6% Percentage of ICS computers on which spyware was blocked ( download ). Malicious scripts and phishing pages – by a factor of 1.4 – from 6.5% Ransomware.

Spyware 130

Spyware Ransomware Cryptocurrency Phishing 130

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool. Target reshuffle.

Phishing 78

Phishing Spyware Banking Malware 78

eSecurity Planet

JUNE 16, 2022

Cisco Umbrella , analyzing the threat environment for 2022, found that 86% of organizations experienced phishing, 69% experienced unsolicited crypto mining, 50% were affected by ransomware, and 48% experienced some form of information-stealing malware. Restoration is offered in exchange for a ransom, usually in cryptocurrencies.

Backups 145

Backups Ransomware Malware Firewall 145

Security Affairs

OCTOBER 23, 2018

A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies. A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies, and implements new features.

Marketing 100

Marketing Cybercrime Cryptocurrency Advertising 100

Security Affairs

MAY 21, 2021

CyberNews researchers found that crooks could abuse cryptocurrency exchange API keys and steal cryptocurrencies. CyberNews researchers found that cybercriminals are able to abuse cryptocurrency exchange API keys and steal cryptocurrencies from their victims’ accounts without being granted withdrawal rights.

Cryptocurrency 108

Cryptocurrency Accountability Marketing Passwords 108

eSecurity Planet

FEBRUARY 17, 2025

It warns you about phishing attempts. It tries to provide features like anti-ransomware, anti-spyware, and parental controls, but that still keeps it behind. McAfee also doesnt offer spyware detection, but Defender does. SmartScreen filter: Designed to keep you safe online. The SmartScreen blocks access to malicious websites.

Antivirus 67

Antivirus Identity Theft VPN Spyware 67

Webroot

MAY 12, 2021

Since cryptocurrencies were, are and will continue to be impactful technologies, surely NFTs are a topic worth exploring. NFTs use the same blockchain ledger technology to verify uniqueness that cryptocurrencies rely on to prove ownership. “What Bitcoin was to 2011, NFTs are to 2021.”. Perhaps NFTs are a bubble positioned to pop.

Cryptocurrency 101

Cryptocurrency Marketing Phishing Authentication 101

Security Affairs

OCTOBER 31, 2021

Hacker accessed medical info at UMass Memorial Health Reading INTERPOL the African Cyberthreat Assessment Report 2021 MITRE and CISA publish the 2021 list of most common hardware weaknesses TrickBot member extradited to US faces up to 60 years in prison ESET found a variant of the Hive ransomware that encrypts Linux and FreeBSD Papua New Guinea ‘s (..)

Artificial Intelligence 92

Artificial Intelligence Ransomware Spyware Cryptocurrency 92

SecureList

NOVEMBER 22, 2022

Cryptocurrency targeted attacks. The cryptocurrency business continues to grow, and people continue to invest their money in this market because it’s a digital asset and all transactions occur online. More cryptocurrency-related threats: fake hardware wallets, smart contract attacks, DeFi hacks, and more.

Cryptocurrency 106

Cryptocurrency Mobile Ransomware Banking 106

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper that includes more than just specific malware families; it drops a wide variety of malicious binaries to infect the machine with, such as backdoors, bankers, downloaders, spyware and many others. The malware is known to be sold on online forums, and distributed via phishing emails. NullMixer execution chain.

Malware 145

Malware Cryptocurrency Passwords Software 145

Security Affairs

NOVEMBER 10, 2020

Now the experts from Kaspersky’s Global Research and Analysis Team (GReAT) gathered further evidence that demonstrates that malware operators behind Tetrade, tracked as Guildma, have expanded their tactics to infect mobile devices with spyware.

Banking 110

Banking Mobile Malware Spyware 110

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. It has been sold on underground hacker forums for stealing browser data, user credentials, and cryptocurrency information. AZORult's developers are constantly updating its capabilities.

Malware 98

Malware Banking Penetration Testing Healthcare 98

Security Boulevard

MAY 3, 2021

The cryptocurrency sector that enables ransomware crime should be more closely regulated. That link would attempt to install spyware called Flubot, malware designed to steal online banking data from Andriod devices. . Phishing Scammers imitate Windows logo with HTML Tables to Slip through Email Gateways.

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 98

Data breaches Malware Mobile Spyware 98

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 55

Spyware Data breaches Ransomware Hacking 55

Security Affairs

AUGUST 25, 2019

5 Common Phishing Attacks and How to Avoid Them? App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice. Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency. Bluetana App allows detecting Bluetooth card skimmers in just 3 seconds. Texas attackers demand $2.5

Small Business 72

Small Business Advertising Data breaches Spyware 72

Security Affairs

AUGUST 4, 2018

Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . · Google introduced G Suite alerts for state-sponsored attacks. · Hundreds of thousands MikroTik Routers involved in massive Coinhive cryptomining campaign. · Industrial Sector targeted in surgical spear-phishing attacks. Pierluigi Paganini.

Cryptocurrency 49

Cryptocurrency Data breaches Spyware Advertising 49

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle?

Banking 51

Banking Spyware Data breaches Advertising 51

SecureList

NOVEMBER 18, 2022

VileRAT is a Python implant, part of an evasive and highly intricate attack campaign against foreign exchange and cryptocurrency trading companies. First, the threat actor sends a spear-phishing email to the potential victim with a lure to download additional documents. RedLine also comes with a cryptocurrency miner.

Malware 122

Malware Computers and Electronics Adware Cryptocurrency 122

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 98

Malware Spyware Government Cryptocurrency 98

SecureList

NOVEMBER 14, 2023

This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware. This attack was highly targeted and showed particular interest in cryptocurrency companies, which may indicate that the ultimate goal of the attackers was financial gain.

Hacking 141

Hacking Energy and Utilities Media Malware 141

Security Boulevard

JANUARY 25, 2022

Exposing a Currently Active NSO Spyware Group’s Domain Portfolio – WhoisXML API Analysis. Exposing a Currently Active Rock Phish Domain Portfolio – Historical OSINT. Introducing Astalavista.box.sk’s “Threat Crawler” Project – Earn Cryptocurrency for Catching the Bad Guys – Hardware Version Available.

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. It stole credentials for various financial systems including online banking applications and cryptocurrency wallets in Brazil. Pandemic theme in mobile threats.

Mobile 145

Mobile Malware Adware Banking 145

SecureList

DECEMBER 1, 2023

However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. We recently detected a phishing campaign targeting cargo shipping companies that drops LokiBot. Otherwise, the reverse shell is created by the crond backdoor itself.

Malware 138

Malware Ransomware Encryption Energy and Utilities 138

Spinone

NOVEMBER 1, 2019

Spyware – malware that spies on the computer to collect the information about a product, a company, a person. The most widespread spyware are keyloggers and trojans. Crypojacking – when a hacker unauthorisedly uses someone’s computing power to mine cryptocurrency. You did it!

Passwords 40

Passwords Social Engineering Malware Encryption 40

SecureList

AUGUST 5, 2021

A fake notification about a Microsoft Teams meeting or a request to view an important document traditionally takes the victim to a phishing login page asking for corporate account credentials. or cryptocurrency secured by these resources. Statistics: phishing. In phishing terms, Q2 2021 was fairly uneventful.

Phishing 134

Phishing Banking Scams Computers and Electronics 134

Security Affairs

MARCH 23, 2025

CISA adds Edimax IC-7100 IP Camera, NAKIVO, and SAP NetWeaver AS Java flaws to its Known Exploited Vulnerabilities catalog CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT WhatsApp fixed zero-day flaw used to deploy Paragon Graphite spyware California Cryobank, the largest US sperm bank, disclosed a data (..)

Spyware 65

Spyware Data breaches Cybercrime Banking 65

eSecurity Planet

FEBRUARY 16, 2021

Attackers often use botnets to send out spam or phishing campaigns to carry out distributed denial of service (DDoS) attacks. Additional features of botnets include spam, ad and click fraud, and spyware. Phishing and Social Engineering. More targeted efforts at specific users or organizations are known as spear phishing.

Malware 105

Malware Adware Spyware Antivirus 105

The Last Watchdog

FEBRUARY 28, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. From mining cryptocurrency to launching DDoS attacks against networks, there are countless ways in which malware can access and utilize victim’s computers and data. Don’t worry though. Common types.

Cyber threats 113

Cyber threats Computers and Electronics Adware Spyware 113

CyberSecurity Insiders

JANUARY 31, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. From mining cryptocurrency to launching DDoS attacks against networks, there are countless ways in which malware can access and utilize victim’s computers and data. Don’t worry though. Ransomware.

Malware 107

Malware Computers and Electronics Adware Spyware 107

Identity IQ

APRIL 29, 2021

Infecting systems and using them to mine cryptocurrencies like bitcoin. These are some ways malware can find its way into your devices: Phishing Emails. Phishing emails trick a victim into clicking on a link or opening an attachment that contains a malicious file. How Does Malware Spread? Ransomware.

Malware 98

Malware Adware Advertising Spyware 98

Security Affairs

NOVEMBER 5, 2023

Kinsing threat actors probed the Looney Tunables flaws in recent attacks ZDI discloses four zero-day flaws in Microsoft Exchange Okta customer support system breach impacted 134 customers Multiple WhatsApp mods spotted containing the CanesSpy Spyware Russian FSB arrested Russian hackers who supported Ukrainian cyber operations MuddyWater has been spotted (..)

Cyber Insurance 129

Cyber Insurance Cryptocurrency Internet Internet 129