-
Endgame Gear mouse config tool infected users with malware
Gaming peripherals maker Endgame Gear is warning that malware was hidden in its configuration tool for the OP1w 4k v2 mouse hosted on the official website between June 26 and July 9, 2025.
- July 28, 2025
- 02:48 PM
0
-
Android malware Anatsa infiltrates Google Play to target US banks
The Anatsa banking trojan has sneaked into Google Play once more via an app posing as a PDF viewer that counted more than 50,000 downloads.
- July 08, 2025
- 11:00 AM
1
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
SonicWall warns of trojanized NetExtender stealing VPN logins
SonicWall is warning customers that threat actors are distributing a trojanized version of its NetExtender SSL VPN client used to steal VPN credentials.
- June 24, 2025
- 04:36 PM
- 0
-
Trojanized RVTools push Bumblebee malware in SEO poisoning campaign
The official website for the RVTools VMware management tool was taken offline in what appears to be a supply chain attack that distributed a trojanized installer to drop the Bumblebee malware loader on users' machines.
- May 20, 2025
- 10:39 AM
- 0
-
Banking malware Grandoreiro returns after police disruption
The banking trojan "Grandoreiro" is spreading in a large-scale phishing campaign in over 60 countries, targeting customer accounts of roughly 1,500 banks.
- May 18, 2024
- 10:12 AM
- 0
-
Finland warns of Android malware attacks breaching bank accounts
Finland's Transport and Communications Agency (Traficom) has issued a warning about an ongoing Android malware campaign targeting banking accounts.
- May 05, 2024
- 10:19 AM
- 0
-
SoumniBot malware exploits Android bugs to evade detection
A new Android banking malware named 'SoumniBot' is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure.
- April 17, 2024
- 05:38 PM
- 0
-
New proxy malware targets Mac users through pirated software
Cybercriminals are targeting Mac users with a new proxy trojan malware bundled with popular, copyrighted macOS software being offered on warez sites.
- December 03, 2023
- 10:12 AM
- 0
-
Microsoft Defender no longer flags Tor Browser as malware
For Windows users who frequently use the TorBrowser, there's been a pressing concern. Recent versions of the TorBrowser, specifically because of the tor.exe file it contained, were being flagged as potential threats by Windows Defender.
- October 02, 2023
- 06:33 PM
- 2
-
New AtlasCross hackers use American Red Cross as phishing lure
A new APT hacking group named 'AtlasCross' targets organizations with phishing lures impersonating the American Red Cross to deliver backdoor malware.
- September 26, 2023
- 11:35 AM
- 0
-
Android malware Xenomorph runs new campaign targeting the U.S.
After several months of operational hiatus, Xenomorph Android malware has launched a new campaign that targets users in the United States, Canada, Spain, Italy, Portugal, and Belgium.
- September 25, 2023
- 11:24 AM
- 0
-
Hackers use open source Merlin post-exploitation toolkit in attacks
Ukraine is warning of a wave of attacks targeting state organizations using 'Merlin,' an open-source post-exploitation and command and control framework.
- August 09, 2023
- 05:32 PM
- 1
-
npm packages caught serving TurkoRAT binaries that mimic NodeJS
Researchers have discovered multiple npm packages named after NodeJS libraries that even pack a Windows executable that resembles NodeJS but instead drops a sinister trojan.
- May 20, 2023
- 09:06 AM
- 0
-
New Fleckpe Android malware installed 600K times on Google Play
A new Android subscription malware named 'Fleckpe' has been spotted on Google Play, the official Android app store, disguised as legitimate apps downloaded over 620,000 times.
- May 04, 2023
- 03:12 PM
- 2
-
Trojanized Tor browsers target Russians with crypto-stealing malware
A surge of trojanized Tor Browser installers targets Russians and Eastern Europeans with clipboard-hijacking malware that steals infected users' cryptocurrency transactions.
- March 28, 2023
- 05:49 PM
- 0
-
Inaudible ultrasound attack can stealthily control your phone, smart speaker
American university researchers have developed a novel attack which they named "Near-Ultrasound Inaudible Trojan" (NUIT) that can launch silent attacks against devices powered by voice assistants, like smartphones, smart speakers, and other IoTs.
- March 25, 2023
- 11:14 AM
- 2
-
Hackers steal $8 million from users running trojanized BitKeep apps
Multiple BitKeep crypto wallet users reported that their wallets were emptied during Christmas after hackers triggered transactions that didn't require verification.
- December 27, 2022
- 10:42 AM
- 0
-
Android malware infected 300,000 devices to steal Facebook accounts
An Android malware campaign masquerading as reading and education apps has been underway since 2018, attempting to steal Facebook account credentials from infected devices.
- December 01, 2022
- 03:52 PM
- 0
-
Android file manager apps infect thousands with Sharkbot malware
A new collection of malicious Android apps posing as harmless file managers had infiltrated the official Google Play app store, infecting users with the Sharkbot banking trojan.
- November 22, 2022
- 11:04 AM
- 0
-
Hackers use Microsoft IIS web server logs to control malware
The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs.
- October 28, 2022
- 06:00 AM
- 0
