Notícias

New ClickFix Malware Variant 'LightPerlGirl' Targets Users in Stealthy Hack

Researchers identify a previously unknown ClickFix variant exploiting PowerShell and clipboard hijacking to deliver the Lumma infostealer via a compromised travel site. The post New ClickFix Malware Variant 'LightPerlGirl' Targets Users in Stealthy Hack appeared first on SecurityWeek.

Report Links Los Pollos and RichAds to Malware Traffic Operations

New research by Infoblox Threat Intel exposes a hidden alliance between major cybercrime groups like VexTrio and seemingly…

Cybercrime crackdown disrupts malware, infostealers, marketplaces across the globe

A burst of global law enforcement actions during the past few weeks marked by a flurry of successful takedowns gives cybercrime experts a jolt of hope. The post Cybercrime crackdown disrupts malware, infostealers, marketplaces across the globe appeared first on CyberScoop.

Massive JSFireTruck Malware Campaign Infects Over 269,000 Websites

Over 269,000 websites have been compromised in a massive malware campaign using the obfuscated JSFireTruck script to stealthily redirect users to malicious sites. The post Massive JSFireTruck Malware Campaign Infects Over 269,000 Websites appeared first on eSecurity Planet.

Spyware and state abuse: The case for an EU-wide ban

EDRi's position paper addresses the challenges posed by state use of spyware in the EU. It also tackles how spyware should be legally defined in a way that shields us from future harms, as well as the dangers of the proliferation of commercial spyware in Europe. After conducting a values-based analysis into spyware, the paper concludes that the only human-rights compliant approach is a full ban. The post Spyware and state abuse: The case for an EU-wide ban appeared first on European Digital Rights (EDRi).

New Predator spyware infrastructure revealed activity in Mozambique for the first time

Insik Group analyzed the new Predator spyware infrastructure and discovered it's still gaining users despite U.S. sanctions since July 2023. Despite earlier declines in activity due to U.S. sanctions and public exposure, Predator spyware has resurged. Insikt Group analyzed a renewed infrastructure linked to the commercial spyware company and identified a new customer in Mozambique, […]

Guardrails Breached: The New Reality of GenAI-Driven Attacks

From vibe hacking to malware development to deepfakes, bad actors are discovering more vulnerabilities to attack generative AI tools while also using AI to launch cyber attacks. The post Guardrails Breached: The New Reality of GenAI-Driven Attacks appeared first on Security Boulevard.

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 49

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Supply chain attack hits Gluestack NPM packages with 960K weekly downloads Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721 Destructive npm Packages Disguised as Utilities Enable Remote System Wipe AMOS Variant Distributed […]

RFK Jr. Orders HHS to Give Undocumented Migrants' Medicaid Data to DHS

Plus: Spyware is found on two Italian journalists' phones, Ukraine claims to have hacked a Russian aircraft maker, police take down major infostealer infrastructure, and more.

Anubis ransomware adds wiper to destroy files beyond recovery

<The Anubis ransomware-as-a-service (RaaS) operation has added to its file-encrypting malware a wiper module that destroys targeted files, making recovery impossible even if the ransom is paid. [...]