The Hacker News

FEBRUARY 17, 2025

South Korea has formally suspended new downloads of Chinese artificial intelligence (AI) chatbot DeepSeek in the country until the service makes changes to its mobile apps to comply with data protection regulations. Downloads have been paused as of February 15, 2025, 6:00 p.m.

Artificial Intelligence 127

Artificial Intelligence Mobile 127

Malwarebytes

JANUARY 22, 2025

7-Zip does not have an auto-update function, so you will have to download the version that is suitable for your system from the 7-Zip downloads page. Always be careful when opening archived files that you downloaded from the internet. Keep threats off your devices by downloading Malwarebytes today.

Internet 142

Internet Internet Malware Risk 142

Malwarebytes

OCTOBER 30, 2024

If there is an update available, Chrome will notify you and start downloading it. This vulnerability, tracked as CVE-2024-10487 , can be used by cybercriminals as a drive-by download. Keep threats off your devices by downloading Malwarebytes today. To manually get the update, click Settings > About Chrome.

Spyware 143

Spyware Architecture Advertising Engineering 143

Malwarebytes

JANUARY 3, 2025

If interested, the victim will receive a download link and a password for the archive containing the promised installer. The archives are offered for download on various locations like Dropbox, Catbox, and often on the Discord content delivery network (CDN), by using compromised accounts which add extra credibility. fr leyamor[.]com

Scams 141

Scams Identity Theft Media Accountability 141

Security Affairs

JANUARY 10, 2025

CrowdStrike warns of a phishing campaign that uses its recruitment branding to trick recipients into downloading a fake application, which finally installs the XMRig cryptominer. “Victims are prompted to download and run a fake application, which serves as a downloader for the cryptominerXMRig.”

Phishing 113

Phishing Scams Malware Authentication 113

Security Affairs

FEBRUARY 24, 2025

CYFIRMA researchers discovered that the SpyLend Android malware was downloaded 100,000 times from the official app store Google Play. The Finance Simplified app is still available on Google Play at the time of this reports publication, with downloads doubling to 100,000 in a week. ” reads the report published by CYFIRMA.

Malware 119

Malware Marketing Hacking Mobile 119

Malwarebytes

MARCH 17, 2025

But in the background, their system has hidden malware in the file the victim has downloaded, which is capable of gathering information from the affected device such as: Personal identifying information (PII) including Social Security Numbers (SSN). Usually, they will, and the victim will think nothing more of it. This is the actual malware.

Malware 139

Malware Adware Education Phishing 139

Zero Day

FEBRUARY 24, 2025

Downloading your Kindle books one by one could take days. But with this clever step-by-step hack, you can grab 25 at a time and save your entire collection before Amazon locks it down this week.

Hacking 119

Hacking 119

Security Affairs

JANUARY 5, 2025

The backdoor is distributed through: Phishing emails with themes such as code of conduct to trick users into downloading the malware. Upon executing the archive, it drops a malicious Windows executable, which eventually downloads and executesthe PLAYFULGHOST payloadfrom a remote server. sys driver.

Malware 130

Malware Encryption Phishing Hacking 130

Security Affairs

FEBRUARY 4, 2025

XR500, the issue was fixed in firmware version 2.3.2.134 “NETGEAR strongly recommends that you download the latest firmware as soon as possible.” Download the latest firmware for your NETGEAR product from the official website: Visit NETGEAR Support. Click Downloads. Click Download. ” reads the advisory.

Firmware 109

Firmware Authentication Hacking Information Security 109

Security Affairs

MARCH 15, 2025

The attack involves executing a cmd script followed by a PowerShell script, which downloads three executables, including the Amadey botnet and two.NET executables (32-bit and 64-bit). The malware, dubbed PackerE, downloads an encrypted DLL (PackerD1) that employs multiple anti-analysis techniques.

Software 117

Software Cryptocurrency Malware Encryption 117

Schneier on Security

OCTOBER 18, 2022

Everyone travelling to Qatar during the football World Cup will be asked to download two apps called Ehteraz and Hayya. Some of them just didn’t bother downloading the apps, and were never asked about it at the border. Everyone visiting Qatar for the World Cup needs to install spyware on their phone.

Spyware 356

Spyware Mobile 356

Security Affairs

JANUARY 4, 2025

The campaign is still ongoing and the malicious packages collectively totaled more than one thousand downloads. The attack has led to the identification of 20 malicious packages published by three primary authors, with the most downloaded package, @nomicsfoundation/sdk-test , accumulating 1,092 downloads.”

Encryption 134

Encryption Hacking Cybercrime Information Security 134

Troy Hunt

FEBRUARY 9, 2023

We always had both as a downloadable corpus but as of just over a year ago with the introduction of the FBI data feed , we stopped maintaining downloadable behemoths of data. But because we only had an API for SHA-1 hashes, the downloader couldn't grab the NTLM versions and increasingly, we had 2 corpuses well out of parity.

Passwords 321

Passwords 321

Malwarebytes

OCTOBER 16, 2024

If an update is available, it will be downloaded. You will be prompted when the download is complete, then click Restart to update Firefox/Tor Browser. Keep threats off your devices by downloading Malwarebytes today. The About Mozilla Firefox/About Tor Browser window will open.

Risk 120

Risk Cybersecurity 120

Security Affairs

MARCH 24, 2025

” Fake file converters and download tools may perform advertised tasks but can provide resulting files containing hidden malware, giving criminals access to victims’ devices. “To conduct this scheme, cyber criminals across the globe are using any type of free document converter or downloader tool. .

Malware 87

Malware Scams Identity Theft Antivirus 87

SecureList

OCTOBER 15, 2024

The document or LNK file starts a multi-stage infection chain with various JavaScript and.NET downloaders, which ends with the installation of the StealerBot espionage tool. All the documents use the remote template injection technique to download an RTF file that is stored on a remote server controlled by the attacker.

Malware 143

Malware Encryption Architecture Phishing 143

The Hacker News

MARCH 14, 2025

Cybersecurity researchers have warned of a malicious campaign targeting users of the Python Package Index (PyPI) repository with bogus libraries masquerading as "time" related utilities, but harboring hidden functionality to steal sensitive data such as cloud access tokens.

Software 131

Software Cybersecurity 131

Schneier on Security

MARCH 4, 2025

This is a sad story of someone who downloaded a Trojaned AI tool that resulted in hackers taking over his computer and, ultimately, costing him his job.

Hacking 237

Hacking Cybersecurity 237

Schneier on Security

NOVEMBER 10, 2022

They estimated that those apps were downloaded more than 60 million times, including 10 million downloads of Muslim prayer apps. Measurement Systems’ website was registered by Vostrom Holdings, according to historic domain name records.

Spyware 331

Spyware Internet Internet Government 331

Zero Day

FEBRUARY 18, 2025

The clock is ticking for Kindle users. After February 2025, a long-standing feature disappears. Will this change how you buy and store digital books? Read on to find out.

145

145

SecureList

MARCH 5, 2025

Dynamics of Windows Packet Divert detections ( download ) The growing popularity of tools using Windows Packet Divert has attracted cybercriminals. The counter at the time of posting the video showed more than 40,000 downloads. After the download, it saves the payload named t.py com , which hosted the infected archive.

Malware 108

Malware Cryptocurrency Antivirus Technology 108

Krebs on Security

JANUARY 25, 2024

Google continues to struggle with cybercriminals running malicious ads on its search platform to trick people into downloading booby-trapped copies of popular free software applications. 252 do serve actual software downloads, but none of them are likely to be malicious if one visits the sites through direct navigation.

Software 312

Software Advertising Malware Accountability 312

SecureList

NOVEMBER 29, 2024

The group’s victims according to its DLS as a percentage of all groups’ published victims during the period under review ( download ) Number of new modifications In Q3 2024, we detected three new ransomware families and 2109 new variants, or half of what we discovered in the previous reporting period. 2 China 0.95 3 Libya 0.68

Mobile 105

Mobile Adware Ransomware Malware 105

Security Affairs

NOVEMBER 26, 2024

We’ve archived the leak and made it available for download on GitHub.” We've archived the leak and made it available for download on GitHub. ” Yesterday Banshee Stealer, the MacOS-based Malware-as-a-Service infostealer, had their source code leaked online.

Malware 143

Malware Cryptocurrency Encryption Passwords 143

Malwarebytes

MARCH 10, 2025

What the files are in reality is an encoded Powershell command which will run invisibly and download the actual payload. For a while, the malware we were seeing downloaded was almost exclusively the Lumma Stealer infostealer, but recently we’ve also found campaigns that use the same method to spread the SecTopRAT.

Social Engineering 140

Social Engineering Media Scams Malware 140

Schneier on Security

FEBRUARY 23, 2022

Apple wrote an Android app that can detect AirTags, but how many people are going to download it?) So now we have several problems with the system. Apple’s anti-stalker security only works with iPhones. And now non-AirTags can piggyback on Apple’s system without triggering the alarms.

Surveillance 349

Surveillance 349

Krebs on Security

SEPTEMBER 19, 2024

Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. Executing this series of keypresses prompts the built-in Windows Powershell to download password-stealing malware.

Phishing 320

Phishing Scams Malware Passwords 320

SecureList

MARCH 3, 2025

Attacks on Kaspersky mobile users in 2024 ( download ) At the end of 2024, we discovered a new distribution scheme for the Mamont banking Trojan, targeting users of Android devices in Russia. Some time later, the user received a phishing link to download malware disguised as a shipment tracking app.

Mobile 117

Mobile Malware Adware Banking 117

Security Affairs

MARCH 24, 2025

Initially, the group published screenshots of stolen data as proof of the attack, now the whole archive can be downloaded from the leak page. The group said that the waiting period had expired and claimed the theft of 134GB of sensitive data.

Ransomware 103

Ransomware Hacking Social Engineering VPN 103

Malwarebytes

FEBRUARY 11, 2025

The lure that convinces people to download these apps varies. Before downloading any apps, you should look at the number of reviews. Most people will only ever need to download Android apps directly from the Google Play Store. Be wary of other app stores or marketplaces, and never download a mobile app directly from a website.

Phishing 128

Phishing Passwords Mobile Authentication 128