financial threats – WindowsTechs.com

New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

Posted on November 6, 2024 by Kirill Korchemny

Kaspersky experts have discovered a new SteelFox Trojan that mimics popular software like Foxit PDF Editor and JetBrains to spread a stealer-and-miner bundle. Continue reading New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency→

The Crypto Game of Lazarus APT: Investors vs. Zero-days

Posted on October 23, 2024 by Boris Larin, Vasily Berdnikov

Kaspersky GReAT experts break down the new campaign of Lazarus APT which uses social engineering and exploits a zero-day vulnerability in Google Chrome for financial gain. Continue reading The Crypto Game of Lazarus APT: Investors vs. Zero-days→

Grandoreiro, the global trojan with grandiose ambitions

Posted on October 22, 2024 by GReAT

In this report, Kaspersky experts analyze recent Grandoreiro campaigns, new targets, tricks, and banking trojan versions. Continue reading Grandoreiro, the global trojan with grandiose ambitions→

Whispers from the Dark Web Cave. Cyberthreats in the Middle East

Posted on October 14, 2024 by Vera Kholopova, Kaspersky Security Services

The Kaspersky Digital Footprint Intelligence team shares insights into the H1 2024 Middle Eastern cyberthreat landscape: hacktivism, initial access brokers, ransomware, stealers, and so on. Continue reading Whispers from the Dark Web Cave. Cyberthreats in the Middle East→

BlindEagle flying high in Latin America

Posted on August 19, 2024 by GReAT

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries. Continue reading BlindEagle flying high in Latin America→

Tusk: unraveling a complex infostealer campaign

Posted on August 15, 2024 by Elsayed Elrefaei, AbdulRhman Alfaifi

Kaspersky researchers discovered Tusk campaign with ongoing activity that uses Danabot and StealC infostealers and clippers to obtain cryptowallet credentials and system data. Continue reading Tusk: unraveling a complex infostealer campaign→

Message board scams

Posted on May 27, 2024 by CFR team

Here’s how scams target buyers and sellers on online message boards, and how the gangs behind them operate. Continue reading Message board scams→

State of ransomware in 2024

Posted on May 8, 2024 by Kaspersky

As Anti-Ransomware Day approaches, Kaspersky shares insights into the ransomware threat landscape and trends in 2023, and recent anti-ransomware activities by governments and law enforcement. Continue reading State of ransomware in 2024→

Financial cyberthreats in 2023

Posted on May 6, 2024 by Kaspersky

In this report, we share our insights into the 2023 trends and statistics on financial threats, such as phishing, PC and mobile banking malware. Continue reading Financial cyberthreats in 2023→

SoumniBot: the new Android banker’s unique techniques

Posted on April 17, 2024 by Dmitry Kalinin

We review the new mobile Trojan banker SoumniBot, which exploits bugs in the Android manifest parser to dodge analysis and detection. Continue reading SoumniBot: the new Android banker’s unique techniques→