malvertizing – WindowsTechs.com

Lumma/Amadey: fake CAPTCHAs want to know if you’re human

Posted on October 29, 2024 by Vasily Kolesnikov

Malicious CAPTCHA distributed through ad networks delivers the Amadey Trojan or the Lumma stealer, which pilfers data from browsers, password managers, and crypto wallets. Continue reading Lumma/Amadey: fake CAPTCHAs want to know if you’re human→

IT threat evolution Q1 2023

Posted on June 7, 2023 by David Emm

Recent BlueNoroff and Roaming Mantis activities, new APT related to the Russo-Ukrainian conflict, ChatGPT and threat intelligence, malvertising through search engines, cryptocurrency theft campaign and fake Tor browser Continue reading IT threat evolution Q1 2023→

Satacom delivers browser extension that steals cryptocurrency

Posted on June 5, 2023 by Haim Zigel, Oleg Kupreev

A recent campaign by Satacom downloader is delivering a cryptocurrency-stealing extension for Chromium-based browsers, such as Chrome, Brave and Opera. Continue reading Satacom delivers browser extension that steals cryptocurrency→

Uncommon infection methods—part 2

Posted on April 13, 2023 by GReAT

Kaspersky researchers discuss infection methods used by Mirai-based RapperBot, Rhadamantys stealer, and CUEMiner: smart brute forcing, malvertising, and distribution through BitTorrent and OneDrive. Continue reading Uncommon infection methods—part 2→

Malvertising through search engines

Posted on March 9, 2023 by Victoria Vlasova, Haim Zigel, Ilya Tyunkin

Kaspersky observes a growth in malvertising activity that exploits Google search ads to promote fake software websites that deliver stealers, such as RedLine and Rhadamantys. Continue reading Malvertising through search engines→

AZORult spreads as a fake ProtonVPN installer

Posted on February 18, 2020 by Dmitry Bestuzhev

We discovered what appears to be one of AZORult’s most unusual campaigns: abusing the ProtonVPN service and dropping malware via fake ProtonVPN installers for Windows. Continue reading AZORult spreads as a fake ProtonVPN installer→

Attackers Inject Persistent Cryptomining in Browsers

Posted on November 30, 2017 by Lucian Constantin

Attackers have found a new technique to make cryptocurrency mining, or cryptomining, inside browsers persistent, or at least survive normal attempts of closing the browser window. Drive-by cryptomining has become widespread in recent months with websit… Continue reading Attackers Inject Persistent Cryptomining in Browsers→

Attackers Inject Persistent Cryptomining in Browsers

Posted on November 30, 2017 by Lucian Constantin

Hyatt Hotels hit with credit card breach in 11 Countries

Posted on October 13, 2017 by Lucian Constantin

Hyatt Hotels Corporation is warning customers that hackers gained access to payment card information at 41 hotels managed by the company in 11 countries. This is the second credit card breach suffered by the company in the past two years. The new incid… Continue reading Hyatt Hotels hit with credit card breach in 11 Countries→