Category: security
GitHub malware spreads by hackers spoofing Microsoft files
Hackers have found a way to upload malware to GitHub, and even have it look as if it was hosted and distributed by other, legitimate operators. This is according to a new report from cybersecurity researchers McAfee, who recently saw the LUA malware loader being distributed through what seems to…
Read More
Malicious Google Ads found promoting a fake IP scanner that just wants to steal your data
Security researchers have spotted another malicious advertising campaign in Google Ads that sees hackers impersonating multiple legitimate software companies. While definitely not the first of its kind, this campaign was said to be unique for distributing a sophisticated Windows backdoor. The campaign was first spotted by cybersecurity researchers from Zscaler…
Read More
LastPass users tricked by hackers posing as staff to steal passwords
LastPass users are being targeted with a sophisticated phishing campaign that sees hackers looking to steal master passwords, which would grant the attackers access to all other passwords stored in the LastPass vaults. The password management company has said it had investigated reports of a new phishing campaign and discovered…
Read More
Microsoft says Copilot app in Windows Server was a mistake
If you were among the Windows Server 2022 users who recently spotted a new Microsoft Copilot app added to the list of installed programs, don’t fret – it’s not an actual app, and it doesn’t work. It’s just a mistake on Microsoft’s part, a tail left behind the tests Microsoft…
Read More
TP-Link routers are still being bombarded with botnet and malware threats
More than a year after a patch was released, hackers are still competing to compromise vulnerable TP-Link Wi-Fi routers. A report from Fortinet claims half a dozen botnet operators are scanning for vulnerable TP-Link Archer AX21 (AX1800) routers after cybersecurity researchers discovered a high-severity unauthenticated command injection flaw in the…
Read More
A whole new generation of ransomware makers are attempting to shake up the market
The days of the “traditional” Ransomware-as-a-Service (RaaS) model could be numbered as hackers instead pivot towards cheaper, crude, off-the-shelf ransomware variants, new research has said. In a new report analyzing the state of the ransomware community, Sophos says it discovered 19 “junk gun” ransomware variants emerging since June 2023. These…
Read More