Fake
-
Blog
Macs under threat from new info-stealing malware spread through fake browser updates — how to stay safe
When it comes to staying safe online, one thing I always recommend is to keep your computer updated along with the software you use everyday. The problem now though, is that hackers are capitalizing on this advice and as you might have guessed, are using it to spread dangerous info-stealing malware targeting Macs, PCs and even Android phones. As reported…
Read More » -
Blog
New FrigidStealer infostealer infects Macs via fake browser updates
The FakeUpdate malware campaigns are increasingly becoming muddled, with two additional cybercrime groups tracked as TA2726 and TA2727, running campaigns that push a new macOS infostealer malware called FrigidStealer. The new malware is delivered to Mac users, but the same campaign also uses Windows and Android payloads to cover a broad range of targets. The new campaign was discovered by researchers…
Read More » -
Blog
Hacker pleads guilty of taking over SEC’s X account to post fake Bitcoin news
Hacker Eric Council Jr. pleaded guilty Monday to charges of conspiracy to commit aggravated identity theft and access device fraud after he took over the SEC’s X account in January 2024. Once Council gained access to the account, his unnamed co-conspirators posted a doctored image, message, and fake quote by then SEC Chairman Gary Gensler saying Bitcoin Exchange Traded Funds…
Read More » -
Blog
FBI issues guidance for enterprises as fake North Korean IT workers wreak havoc
The FBI has issued fresh guidance aimed at helping organizations combat the threats posed by fake North Korean IT workers after a spate of incidents. In its latest efforts to stamp out the scam whereby North Korean hackers pose as legitimate remote IT workers, the FBI said they are continuing to target US-based businesses. “In recent months, in addition to…
Read More » -
Blog
Hacker infects 18,000 “script kiddies” with fake malware builder
A threat actor targeted low-skilled hackers, known as “script kiddies,” with a fake malware builder that secretly infected them with a backdoor to steal data and take over computers. Security researchers at CloudSEK report that the malware infected 18,459 devices globally, most located in Russia, the United States, India, Ukraine, and Turkey. “A trojanized version of the XWorm RAT builder…
Read More » -
Blog
Hundreds of fake Reddit sites push Lumma Stealer malware
Hackers are distributing close to 1,000 web pages mimicking Reddit and the WeTransfer file sharing service that lead to downloading the Lumma Stealer malware. On the fake pages, the threat actor is abusing the Reddit brand by showing a fake discussion thread on a specific topic. The thread creator asks for help to download a specific tool, another user offers to help…
Read More » -
Blog
Fake Homebrew Google ads target Mac users with malware
Hackers are once again abusing Google ads to spread malware, using a fake Homebrew website to infect Macs and Linux devices with an infostealer that steals credentials, browser data, and cryptocurrency wallets. The malicious Google ads campaign was spotted by Ryan Chenkie, who warned on X about the risk of malware infection. The malware used in this campaign is AmosStealer (aka…
Read More » -
Blog
What are Fake Trojan Scams and How Can You Avoid Them?
You probably know about trojan viruses to some degree. You likely have an antivirus program installed on your computer to detect and block them – as you should. But did you know that fake trojan viruses can be just as dangerous? If you’re not careful, a fake trojan virus can lead to a real one. A fake trojan virus attack…
Read More » -
Blog
Phishing campaign targets developers with fake CrowdStrike job offers
Developers are being targeted in a new phishing campaign using fake CrowdStrike job offers, the security company has warned. The firm noted that the campaign, first identified on 7 January, uses CrowdStrike’s recruitment branding to load crypto-mining malware onto the victim’s systems. The campaign begins with phishing emails purporting to be part of a recruitment process informing victims that they…
Read More » -
Blog
Fake LDAPNightmware exploit on GitHub spreads infostealer malware
A deceptive proof-of-concept (PoC) exploit for CVE-2024-49113 (aka “LDAPNightmare”) on GitHub infects users with infostealer malware that exfiltrates sensitive data to an external FTP server. The tactic isn’t novel, as there have been multiple documented cases of malicious tools disguised as PoC exploits on GitHub. However, this case, discovered by Trend Micro, highlights that threat actors continue to use the…
Read More »