Zaraza Malware targets Browsers to Steal Credentials
Researchers came up with a warning about a new variant of the credential-stealing malware dubbed as Zaraza. This is fond of pilfering log-in credentials of web browsers Google Chrome, Microsoft…
Vidar info Stealer Malware
New campaign from crooks seen spoofing the AnyDesk site to infect endpoints with Vidar stealer. More than 1,300 domains that impersonate the official AnyDesk site were redirected users to a…
IIS Module Malvertised to Steal Microsoft Exchange Credentials
Threat actors are installing a malicious IIS web server module named 'Owowa' on Microsoft Exchange Outlook Web Access servers to steal credentials and execute commands on the server remotely. Owowa…
MSHTML Bug Exploited to Steal Credentials
Iranian threat actor is stealing Google and Instagram credentials using a new PowerShell based theft tool which is also used to monitor Telegram and collect system information from the compromised…
Snake 🐍 Malware Bites Hard
Cybercriminals are flooding to use the Snake password-stealing trojan, making it one of the popular malware families used in attacks. Written in .NET and using the same staging mechanism as FormBook and…
Lyceum APT Rebranded it’s Arsenal
New details have been revealed about the Lyceum group also called Hexane. A new set of activities that indicate that the group targeted two entities in Tunisia, while also updating…
Fake Android Apps Looking for User Credentials
An Android based phishing effort targeting consumers of Japanese telecommunication providers was discovered by researchers. Threat Actors behind this campaign has hosted multiple domains and spreads a fake version of…
Phishing with IT Returns
CERT-In notified that customers of nearly 27 Indian banks including major public and private banks are at the risk of attack from a new banking trojan malware masquerading as income-tax…