Screen recording app was spying on its users
ESET reports that an Android app was secretly spying on its users. iRecorder - Screen Recorder introduced malicious code through an app update almost a year after its initial listing on Google Play. ESET's research exposed that this code enabled the app to covertly upload one minute of ambient audi... Read more
Cybercriminals use Microsoft OneNote attachments to spread malware
Security researchers warn that cybercriminals have started using OneNote attachments in phishing emails to infect victims with remote access malware, allowing attackers to steal passwords and even cryptocurrency wallets.
The tactic isn't new, as attackers have been sending malware through malici... Read more
Researchers find malicious info-stealing packages in PyPI
Security firm Phylum discovered six malicious packages on the Python Package Index (PyPI). The packages installed info-stealing RAT (remote access trojan) malware using Cloudflare Tunnel to bypass firewalls.
The packages attempted to steal sensitive user information from browsers, run shell comm... Read more
Magento stores face wave of TrojanOrders attacks
At least seven criminal groups are responsible for a significant increase in TrojanOrders attacks on Magento 2 websites, which exploit a flaw that allows malicious actors to infect vulnerable servers.
Sansec, a website security firm, said that the assaults target nearly 40 percent of all Magento... Read more
‘Cybercriminals stole $30M in multi-year international crime spree’
A French-speaking cybercrime ring is said to have hauled off $30 million from fifteen countries over five years.
The threat actor dubbed OPERA1ER has been linked to a series of more than 30 successful cyberattacks aimed at banks, financial services and telecom companies across Africa, Asia, and ... Read more
A Google Play app with more than 10,000 downloads carried remote access trojan
According to a security firm, a malicious program downloaded more than 10,000 times from Google Play installed a remote access malware that collected users' passwords, text messages, and other private data.
The trojan, which goes by the aliases TeaBot and Anatsa, was discovered in May of last ye... Read more
A backdoor RAT for macOS, Windows, and Linux only recently found
Researchers have discovered a terrifying new form of malware written from scratch. It is designed to target systems running macOS, Windows, and Linux. Before it was found, this piece of backdoor malware was not detectable by any malware scanning engines.
The researchers who discovered the malwar... Read more