Info stealers are increasingly finding their way into corporate environments, possibly as a result of increased blurring of personal and work devices. Report finds that some 400,000 employee logins are available for sale on dark web sites and illicit Telegram channels.
According to a Justice Department statement, a Russian FSB unit called 'Turla' has operated the Snake malware to conduct cyber espionage for nearly 20 years and made use of it to steal data from at least 50 countries.
By leveraging public interest in generative AI chatbots like ChatGPT and Google’s Bard, hackers are distributing novel malware on Facebook and hijacking online accounts.
A Vietnamese threat actor infected at least 500,000 devices worldwide within three months in a malverposting campaign leveraging inappropriate Facebook Ads.
Pinduoduo, a popular Chinese shopping app has been suspended from the Google Play Store after traces of malware were found in the code of previous app versions. Suspected purpose was to pore through user data and find information related to competing shopping apps.
The web hosting company says that the group of hackers was able to access its network using stolen credentials, and planted malware and stole source code to give itself points of long-term access.
The increasing spread of wiper malware is a stark reminder of the dangerous landscape organisations face when protecting their data. A solid, well-managed data backup and recovery plan is the key to ensuring data safety in the face of today’s growing array of threats.
Dark web forum posts indicate that low- or even no-skill threat actors have figured out how to manipulate ChatGPT instructions to get it to produce basic but viable malware.
The FBI warned that hackers are using search engine ads for phishing and spreading malware to unsuspecting users by impersonating legitimate businesses and services.
2K Games accounts used for online games may have received unexpected messages from the helpdesk system claiming to be a response to a request. The messages look authentic, but conclude with a link to RedLine malware.