Malware

mobile malware

This Is How xHelper Reinstates Itself on Android Phones Even After Factory Reset

A malware analyst figured out how xHelper manages to achieve its notorious level of persistence. The dropper and ad clicker Trojan is invading in the system partition, having root access on the...
malvertising

A Fake Malwarebytes Malvertising Campaign Is Serving “Raccoon” Stealers

Malwarebytes is warning about a new malvertising campaign set up on its brand. The security company believes that it’s the work of actors who were damaged by its previous reports. Users...
watering hole

Researchers Unveil Large-Scale Watering-Hole Attacks in Asia

Kaspersky has discovered a lengthy watering hole campaign that targets Asian users. The actors aren't using novel malware or any zero-days, but they are still successful. Some of the websites remain...
Raccoon logo

Raccoon’s Info-Stealer “Malware-as-a-Service” Is Getting More Popular

Threat actors are turning their attention to the Raccoon stealer, making the MaaS gradually more popular. There’s already a sizeable community around Raccoon and a noteworthy customer support service. Raccoon features...
malware

‘G Buddy – Smart Life’ Android App Carries Windows Malware

A Chinese smartwatch app for Android was found to contain malware that targets Windows systems. The app was removed, cleaned, and re-uploaded, so it was likely a case of a supply chain...
usb stick

Beware of Fake Gift Cards Coming With USB Drives

Actors are circulating pentest USB drives claiming that they contain a list of products eligible to get for free from “Best Buy”. The USB drive can fetch various payloads, run commands through...
tupperware

Tupperware Website Got Infected With Magecart Skimmers

The checkout page on “tupperware.com” has been infected with card-stealing skimmers. The victims were urged to enter their payment details on a spoofed payment form loaded by a malicious image. The...
android adware

Kids’ Apps on Play Store Found Ridden With the Tekya Clicker Malware

A collection of 56 apps infected with clicker malware was discovered in the Play Store. Google has removed them all by now, but a million users have already downloaded and installed them....
hacker botnet

Microsoft Has Hijacked the Necurs Infrastructure and Crippled the Botnet

Microsoft bashed the Necurs botnet by taking over its US-based infrastructure. The tech company also pre-reported domains that Necurs would register next. Two million computers remain infected, but ISPs now know which...
flag of Brazil

Brazil is Still the Main Target of the “Guildma” Banking Trojan

The Guildma banking Trojan is still under active development and extensive deployment in Brazil. The malware can split its functionality over 10 individual modules, and do all kinds of nasty tricks. ...

Most Popular