ChromeLoader Browser Malware Spreading Via Pirated Games and QR Codes

A new malvertising campaign has emerged in which ChromeLoader malware is being used to hijack browsers and steal data. A sudden, unexpected spike in browser hijacking campaigns utilizing ChromeLoader malware…

Predator Spyware Using Zero-day to Target Android Devices

Spyware developer firm Cytrox is under Google’s radar for developing exploits against five 0-day flaws in Android and Chrome. On Thursday, May 19th, Google’s Threat Analysis Group (TAG) reported that…

Latest Update for Google Chrome Fixes Actively Exploited 0-day Flaw

One of the two security vulnerabilities identified in the Google Chrome web browser was reportedly being actively exploited in the wild. On Thursday, Google released emergency fixes for the Chrome…

Update Chrome Browser Now – Google Releases Emergency Security Update

At least 3.2 billion Chrome users could be at risk because of the high severity zero-day vulnerability. Google released an emergency security update for Google Chrome Stable on 25th March…

Project Zero researchers see promising trends in vulnerability fixes

Written by AJ Vicens Feb 10, 2022 | CYBERSCOOP Big tech vendors generally are remediating serious bugs faster than they were three years ago, according to a new report from…

Chasing Chaes Kill Chain

Avast –  Avast –  Introduction Chaes is a banking trojan that operates solely in Brazil and was first reported in November 2020 by Cybereason. In Q4 2021, Avast observed an…

DuckDuckGo developing a robust privacy-focused desktop browser

According to DuckDuckGo, the desktop browser will work on both Mac and Windows devices. DuckDuckGo has revealed its plans for an upcoming desktop app in its latest blog post in…

Malicious Exchange Server Module Hoovers Up Outlook Credentials

“Owowa” stealthily lurks on IIS servers, waiting to harvest successful logins when an Outlook Web Access (OWA) authentication request is made. Researchers have uncovered a previously unknown malicious IIS module,…

Agent Tesla Spyware Used in Phishing Campaign

Agent Tesla initially detected in late 2014, is a known spyware aimed at collecting sensitive data from a victim’s device, such as stored application credentials and keyboard inputs (keylogger). Agent…

French Users and Orgs Targeted by TinyNuke Info-Stealing Malware

According to security researchers, the TinyNuke banking malware (also known as Nukebot) has resurfaced in a new operation exclusively targeting French users and organizations with invoice-themed email lures. The targets…