Slopsquatting
April 16 2025As AI coding assistants invent nonexistent software libraries to download and use, enterprising attackers create and upload libraries with those names—laced with malware, of course.
Read moreTP-Link Router Botnet
March 14 2025There is a new botnet that is infecting TP-Link routers:
The botnet can lead to command injection which then makes remote code execution (RCE) possible so that the malware...
Read more
Thousands of WordPress Websites Infected with Malware
March 10 2025The malware includes four separate backdoors:
Creating four backdoors facilitates the attackers having multiple points of re-entry should one be detected and removed. A unique case we haven’t seen...
Read more
Delivering Malware Through Abandoned Amazon S3 Buckets
February 12 2025Here’s a supply-chain attack just waiting to happen. A group of researchers searched for, and then registered, abandoned Amazon S3 buckets for about $400. These buckets contained software...
Read moreScreenshot-Reading Malware
February 7 2025Kaspersky is reporting on a new type of smartphone malware. The malware in question uses optical character recognition (OCR) to review a device’s photo library, seeking screenshots of recovery phrases...
Read moreFake Reddit and WeTransfer Sites are Pushing Malware
January 30 2025There are thousands of fake Reddit and WeTransfer webpages that are pushing malware. They exploit people who are using search engines to search sites like Reddit. Unsuspecting victims clicking on...
Read moreNew VPN Backdoor
January 27 2025A newly discovered VPN backdoor uses some interesting tactics to avoid detection:
When threat actors use backdoor malware to gain access to a network, they want to make sure...
Read more
FBI Deletes PlugX Malware from Thousands of Computers
January 16 2025According to a DOJ press release, the FBI was able to delete the Chinese-used PlugX malware from “approximately 4,258 U.S.-based computers and networks.”
To retrieve information from and...
Read more
Detecting Pegasus Infections
December 6 2024This tool seems to do a pretty good job.
The company’s Mobile Threat Hunting feature uses a combination of malware signature-based detection, heuristics, and machine learning to look for...
Read more
Perfectl Malware
October 14 2024Perfectl in an impressive piece of malware:
The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that...
Read more
Recent Comments