Hackers Using Web3 Backdoor Wallets to Steal Seed Phrases from iOS/Android Users

A Chinese-speaking, technically skilled threat actor distributes backdoored applications to extract cash from victims in the newly discovered large-scale operation. Confiant security researchers have shared details of a large-scale operation…

Parrot TDS takes over web servers and threatens millions

Avast –  Avast –  A new Traffic Direction System (TDS) we are calling Parrot TDS, using tens of thousands of compromised websites, has emerged in recent months and is reaching…

Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool

Avast –  Avast –  Avast Threat Intelligence Team has found a remote access tool (RAT) actively being used in the wild in the Philippines that uses what appears to be…

'Most advanced' China-linked backdoor ever, Daxin, raises alarms for cyber-espionage investigators

Written by Joe Warminsky Feb 28, 2022 | CYBERSCOOP A backdoor in use as recently as November 2021 is the “most advanced piece of malware” ever seen from China-linked spies,…

Meet SockDetour fileless backdoor targeting U.S. Defense contractors

Researchers suspect that the SockDetour backdoor is used in attacks carried out by an APT (advanced persistent threat) group known as TiltedTemple. Palo Alto Network’s Unit 42 researchers discovered a…

Malware families using Pay-Per-Install service to expand targets

The PrivateLoader is a Pay-Per-Install malware (PPI) that delivers a wide variety of malware. Including Vidar, Raccoon, Redline, Smokeloader, Danabot, GCleaner, Discoloader, and others, according to Intel 471. The dangerous…

Analysis of Attack Against National Games of China Systems

Avast –  Avast –  Introduction On September 15, 2021 the National Games of China began in the Chinese city of Shaanxi. It is an event similar if not identical to…

3 ways to improve your website security

Every so often, you hear in the news that a company’s website was down temporarily for several hours, preventing visitors and consumers alike from accessing it. Or, you may receive…

SnatchCrypto attack hits DeFi and Blockchain Platforms with backdoor

Kaspersky researchers believe that North Korean government-backed hackers from the Lazarus Group are behind the SnatchCrypto attack. The IT security researchers at Kaspersky have revealed details of a new campaign…

Multi-platform SysJoker backdoor targeting Windows, macOS & Linux Devices

Linux and macOS samples of SysJoker malware were found to be fully undetected on VirusTotal. The IT security researchers at Israel-based cybersecurity firm Intezer have identified a novel multi-platform backdoor malware…