APT hackers spread Android malware through Syrian e-Gov portal

The Syrian e-Government Web Portal was used by an APT actor to launch a new campaign using Android malware, revealing an updated arsenal targeted to compromise victims.   According to…

Joker Trojan discovered in 11 Android apps: Reports

As more people use the internet, Android malware is getting more common.   On the other hand, there is a huge hazard on the Internet that can cause a lot…

XLoader windows info-stealer malware now designed to attack macOS

The popular Windows info stealing malware has been transformed into a new strain known as XLoader, which can now attack Mac devices as well.   On an underground forum, XLoader…

WiFiDemon – iPhone Wi-Fi bug could also enable RCE

Carl Schou, a researcher, uncovered a new WiFi bug in June that can permanently disable iPhone users’ WiFi by disconnecting it.   The WiFi bug can be triggered by merely…

Israeli firm Candiru exploited Windows zero-days to deploy spyware

Candiru, an Israeli surveillance company also known as Sourgum, used Windows zero-day exploits to release DevilsTongue, a new Windows malware.   According to Microsoft and Citizen Lab researchers, Candiru’s spyware…

Trickbot makes a comeback with its VNC module for high-value targets

Despite law enforcement actions intended at eliminating the Trickbot botnet, it continues to evolve. The creators recently released an upgrade for the VNC module, which is used to control infected…

Amazon rolls out Ring end-to-end encryption globally

Amazon-owned Ring to roll out End-to-End Encryption based videos in compatible devices worldwide.   On 13th Jan 2021, Ring announced the launch of End-to-End Encryption in technical preview for US…

Magecart hackers hide stolen credit card data into images and fake CSS files

Magecart hackers have devised a new strategy for altering malware within comment blocks and disguising stolen credit card data in pictures in order to avoid detection.   Magecart is an…

Kaseya issued fixes for flaws exploited in REvil ransomware attack

The VSA zero-day vulnerabilities were used by the REvil ransomware gang to attack MSPs and their clients, and Kaseya has published security patches for them.   Kaseya VSA is a…

Hackers use new tricks to disable Macro security warnings in malicious Office files

Researchers discovered that hackers are using a sophisticated phishing attack strategy in which non-malicious documents are used to disable Macro security alerts before executing macro code on targeted machines.  …