The authentic-looking decoy pages function as a reverse proxy to harvest credentials and time-based one-time passwords (TOTPs) entered by the victims
Read More...
Users may be manipulated into downloading and executing the malware under the guise of legitimate software
Read More...
Federal Civilian Executive Branch (FCEB) agencies are required to apply vendor-provided fixes by May 22, 2023, to secure their networks against these active threats
Read More...
Considering that the trojanized software is targeting corporate users, infected devices make candidates for the beginning of ransomware attacks
Read More...
Qbot's use of a new email distribution method was detected — PDF attachments that download Windows Script Files to install Qbot on victims' devices
Read More...
If a targeted visitor browses the site, the scripts will display a fake Google Chrome error screen stating that an automatic update required to continue browsing the site failed to install
Read More...
The malware is designed to monitor browser activity, take screenshots, and steal cryptocurrency and email account credentials through scripts injected into web pages
Read More...
Successful exploitation on unpatched devices using Sudo versions 1.8.0 through 1.9.12p1 could enable attackers to escalate privileges by editing unauthorized files
Read More...
Threat actors create malicious Microsoft OneNote documents by embedding dangerous files and scripts and then hiding them with design elements
Read More...
Once Emotet is installed, the malware will steal victims' emails to use in future reply-chain attacks, send further spam emails
Read More...