CStealer: a new Windows trojan password stealer
A new Windows trojan dubbed CStealer attempts to steal passwords from Chrome browser. The malware also uses a remote MongoDB server to store the stolen passwords.
APT33 uses a dozen botnets in targeted malware campaign
Security researchers from Trend Micro have spotted a dozen obfuscated botnets being used in a highly targeted malware campaign.
Emotet malware campaign warning
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has warned of an ongoing and widespread phishing campaign designed to spread Emotet malware throughout Australia.
Divergent “fileless” NodeJS malware used for click-fraud
Attackers are using a "fileless" malware dubbed Divergent to generate revenue via click-fraud. Divergent further uses NodeJS and a WinDivert utlility to facilitate the malware attack.
Tortoiseshell targets US veterans with fake website used to download malware
A cyber attack group dubbed "Tortoiseshell" has deployed a fake website posing as a site to help U.S. military veterans find jobs. The website is then used to download malware to visitors' systems.
TFlower ransomware targets companies via exposed RDS
A new ransomware dubbed TFlower has been targeting corporate environments via exposed remote desktop services (RDS).
Watchbog targets unpatched systems
Security experts have uncovered an incident that involved the Watchbog cryptomining botnet. Attackers exploited CVE-2018-1000861 to establish a foothold on the victim's network and install Watchbog malware on unpatched systems.
Joint effort neutralizes Retadup worm that infected 850k systems
A joint effort between security firm Avast and a French cybercrime unit C3N has taken down a malicious worm dubbed Retadup that has affected thousands of machines.
23 Texas towns hit in coordinated ransomware attack
The Texas Department of Information Resources (DIR) has confirmed late Friday that 23 towns across Texas were victims of a coordinated ransomware attack.
Louisiana declares state of emergency after ransomware attack
Governor Edwards of Louisiana has declared a state of emergency after three of its school districts were hit with ransomware attacks.