The Inferno Drainer malware that plagued the crypto world throughout 2023 ultimately compromised about 130,000 victims and stole about $87 million in total, according to a new report from Group-IB. It was part of a broader movement of "crypto drainer" services that some security experts believe is poised to become the next big thing in cybercrime in 2024.
The long-running Qakbot malware botnet was disrupted by international law enforcement action in August, but its operators appear to still have some capability and are continuing to run spam email campaigns that attempt to pass ransomware.
Info stealers are increasingly finding their way into corporate environments, possibly as a result of increased blurring of personal and work devices. Report finds that some 400,000 employee logins are available for sale on dark web sites and illicit Telegram channels.
According to a Justice Department statement, a Russian FSB unit called 'Turla' has operated the Snake malware to conduct cyber espionage for nearly 20 years and made use of it to steal data from at least 50 countries.
By leveraging public interest in generative AI chatbots like ChatGPT and Google’s Bard, hackers are distributing novel malware on Facebook and hijacking online accounts.
A Vietnamese threat actor infected at least 500,000 devices worldwide within three months in a malverposting campaign leveraging inappropriate Facebook Ads.
Pinduoduo, a popular Chinese shopping app has been suspended from the Google Play Store after traces of malware were found in the code of previous app versions. Suspected purpose was to pore through user data and find information related to competing shopping apps.
The web hosting company says that the group of hackers was able to access its network using stolen credentials, and planted malware and stole source code to give itself points of long-term access.
The increasing spread of wiper malware is a stark reminder of the dangerous landscape organisations face when protecting their data. A solid, well-managed data backup and recovery plan is the key to ensuring data safety in the face of today’s growing array of threats.
Dark web forum posts indicate that low- or even no-skill threat actors have figured out how to manipulate ChatGPT instructions to get it to produce basic but viable malware.