Collaborate Disseminate
A British journalistic trope involves the phrase “The pound in your pocket”, a derisory reference to the 1960s Prime Minister Harold Wilson’s use of it to try to persuade the …read more Continue reading The Pound ( or Euro, Or Dollar ) Can Still Be In Your Pocket
Blockchain, known for its role in cybersecurity, fintech, and cryptocurrencies, raises the question: Is it secure? Absolutely! With… Continue reading Is the Blockchain Secure? Yes, and Here’s Why
Lumma Stealer malware uses fake CAPTCHA to deceive victims. This information-stealing malware targets sensitive data like passwords and… Continue reading Fake CAPTCHA Pages Used by Lumma Stealer to Spread Fileless Malware
Perfectl in an impressive piece of malware:
The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. It can also exploit CVE-2023-33246, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.
The researchers are calling the malware Perfctl, the name of a malicious component that surreptitiously mines cryptocurrency. The unknown developers of the malware gave the process a name that combines the perf Linux monitoring tool and ctl, an abbreviation commonly used with command line tools. A signature characteristic of Perfctl is its use of process and file names that are identical or similar to those commonly found in Linux environments. The naming convention is one of the many ways the malware attempts to escape notice of infected users…
Creating new accounts under fake identities provides attackers with a way to launder money or commit fraud. Continue reading Deepfakes Can Fool Facial Recognition on Crypto Exchanges
Trojan.AutoIt.1443 targets 28,000 users, spreading via game cheats and office tools. This cryptomining and cryptostealing malware bypasses antivirus… Continue reading New Crypto Trojan.AutoIt.1443 Hits 28,000 Users via Game Cheats, Office Tool
Checkmarx researchers discovered PyPI malware posing as crypto wallet tools. These malicious packages stole private keys and recovery… Continue reading New PyPI Malware Poses as Crypto Wallet Tools to Steal Private Keys
In recent years, FinTech companies have expanded cashless payment options to meet consumer demands for digital and frictionless payments. Continue reading 5 Online Payment Methods for Small Businesses To Try in 2024
A malicious app disguised as a legitimate WalletConnect tool targeted mobile users on Google Play. The app stole… Continue reading First Mobile Crypto Drainer on Google Play Steals $70K from Users
Two men are accused of stealing almost a quarter of a billion dollars from one person’s cryptocurrency wallet, but why on earth would they be handing out handbags to strangers? And social media comes under the spotlight once more, as we ask if you are… Continue reading Smashing Security podcast #386: The $230 million crypto handbag heist, and misinformation on social media