- Details
- The Hacker News
The Hacker News published A new ransomware family called 3AM has emerged in the wild after it was detected in a single incident in which an unidentified affiliate deployed the strain following an unsuccessful attempt to deliver LockBit (attributed to Bitwise Spider or Syrphid) in the target network.
"3AM is written in Rust and appears to be a completely new malware family," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker News.
"The ransomware attempts to stop multiple services on the infected computer before it begins encrypting files. Once encryption is complete, it attempts to delete Volume Shadow (VSS) copies." Read More..
- Details
- The Hacker News
September 13, 2023 The Hacker News published Spyware masquerading as modified versions of Telegram have been spotted in the Google Play Store that's designed to harvest sensitive information from compromised Android devices.
According to Kaspersky security researcher Igor Golovin, the apps come with nefarious features to capture and exfiltrate names, user IDs, contacts, phone numbers, and chat messages to an actor-controlled server. Read More..
- Details
- The Hacker News
September 12, 2023 The Hacker News published A new information stealer malware called MetaStealer has set its sights on Apple macOS, making the latest in a growing list of stealer families focused on the operating system after Stealer, Pureland, Atomic Stealer, and Realst.
"Threat actors are proactively targeting macOS businesses by posing as fake clients in order to socially engineer victims into launching malicious payloads," SentinelOne security researcher Phil Stokes said in a Monday analysis. Read More..
- Details
- The Hacker News
September 11, 2023 The Hacker News published A new cyber-attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium.
The activity has been codenamed Steal-It by Zscaler ThreatLabz. Read More..
- Details
- BleepingComputer
September 11, 2023 BleepingComputer published Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware.
The attackers trick the targets into downloading a RAR/ZIP archive containing a downloader for an evasive Python-based stealer that grabs cookies and passwords stored in the victim's browser. Read More..
- CISA Warns Govt Agencies to Secure iPhones Against Spyware Attacks
- Microsoft Teams Phishing Attack Pushes DarkGate Malware
- Chrome Extensions Can Steal Plaintext Passwords from Websites
- Exploit Released for Critical VMware SSH Auth Bypass Vulnerability
- Hackers Can Exploit Windows Container Isolation Framework to Bypass Endpoint Security