New AlienFox toolkit harvests credentials for tens of cloud services
AlienFox is a novel comprehensive toolset for harvesting credentials for multiple cloud service providers, SentinelLabs reported. AlienFox …
Malware
IRS tax forms W-9 email scam drops Emotet malware
Emotet malware is known for stealing personal data and financial details from a targeted device. The cybersecurity researchers at …
Supply chain blunder puts 3CX telephone app users at risk
Internet telephony company 3CX is warning its customers of malware that was apparently weaseled into the company’s own 3CX Desktop App by …
Do you use comms software from 3CX? What to do next after biz hit in supply chain attack
Two security firms have found what they believe to be a supply chain attack on communications software maker 3CX – and the vendor’s boss …
Chinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG Backdoor
A Chinese state-sponsored threat activity group tracked as RedGolf has been attributed to the use of a custom Windows and Linux backdoor …
Clipboard-injecting malware disguises itself as Tor browser, steals cryptocurrency
Imagine you live in Russia and want to use the Tor browser to anonymise your browsing of the web. There’s a …
Popular PABX platform, 3CX Desktop App suffers supply chain attack
SentinelOne has dubbed the attack “Smooth Operator,” while CrowdStrike suspects the involvement of a North Korean government-state …
3CX Desktop App Supply Chain Attack Leaves Millions at Risk – Urgent Update on the Way!
3CX said it’s working on a software update for its desktop app after multiple cybersecurity vendors sounded the alarm on what appears to be …
3CX Desktop App Targeted in Supply Chain Cyber Attack, Affecting Millions of Users
3CX said it’s working on a software update for its desktop app after multiple cybersecurity vendors sounded the alarm on what appears to be …
Malware disguised as Tor browser steals $400k in cryptocash
Clipboard-injector malware disguised as Tor browser installers has been used to steal about $400,000 in cryptocurrency from nearly 16,000 …
Smashing Security podcast #315: Crypto hacker hijinks, government spyware, and Utah social media shocker
A cryptocurrency hack leads us down a mazze of twisty little passages, Joe Biden’s commercial spyware bill, and Utah gets tough on social …
Google reveals spyware attack on Android, iOS, and Chrome
The primary target of this spyware campaign were the unsuspecting users in Italy, Malaysia, and Kazakhstan. Google’s Threat Analysis …
Fake Tor Browser Installers Distributing Clipper Malware
The Clipper malware is notoriously known for stealing cryptocurrency funds and user data from targeted devices. According to Kaspersky …
Clipper attacks use Trojanized TOR Browser installers
Researchers discovered malware-laced installers for the TOR browser that is spreading clipper malware in Russia and Eastern Europe. …