Malware

trojan

Fake NordVPN Website Infects Victims With Banking Trojan

Known group of malicious actors has refreshed its banking trojan campaign by using new websites. The actors have created clone websites of NordVPN and other products, infecting systems with Bolik. The...
Monero Icon Logo

Recent Cryptojacking Campaigns Use a New Malware Strain Called ‘Norman’

Researchers have captured a new cryptomining malware that has not been seen in the wild before. This new malware is called 'Norman' and features a rich set of obfuscation and hiding methods....
sextortion_malware

Varenyky Malware is Recording People’s Screens and Delivers Sextortion Messages

Varenyky is a new breed of malware and spambot that records people’s screens using FFmpeg. The malware is also capable of stealing user credentials right from the Web browser. The actors...
cerberus

A New Android Malware Called ‘Cerberus’ is Available for Renting

A new banking Trojan for Android is for sale right now, getting actively promoted on Twitter. The malware was written from scratch and features advanced obfuscation, anti-deletion, and anti-analysis systems. Right...
Netgear_Router

Back to Back Malware Campaigns Targeting Routers and IoT Devices

TrendMicro notices back to back malware campaigns targeting the same networks. The actors are trying to find their way in the target networks by deploying a wide range of new malware variants....

Magecart Skimmers Strike Again – 65,000+ Data Theft Attempts Blocked in July Alone!

Malwarebytes reports an astonishing increase in the number of Web skimming attacks in July, with this trend likely to continue to rise. Web skimming is oriented toward stealing your personal and payment information...
GRU_emblem

A Russian Defense Contractor is the Developer of the ‘Monokle’ Android Surveillanceware

Researchers claim that there’s a definite connection between Monokle and the Special Technology Centre. STC is a company whose collaborations with the Russian Intelligence Agency has been long documented. Monokle could...

BrushaLoader is Still Out There, Distributing High-Profile Malware

Proofpoint says BrushaLoader is still used by malicious actors, one year after its release. The particular loader is good at bringing in a wide range of payloads in multi-staged phases. The...
adware

Three Fake Android Apps on the Google Play Store Are Essentially Adware

Three Android adware apps that feature advanced concealment have amassed 30000 downloads. The apps have been removed now, but it looks like they turned to adware recently via an update. The...
server

ExtenBro Changes the Victim’s DNS and Serves Adware on the Browser

ExtenBro arrives with a bag of DNS changing and task scheduling tricks, so beware. The Trojan bundles adware that pushes ads to victims and generates money for the actors. Malwarebytes offers...

Most Popular