New malware can read your chats and steal your money

A new Android banking trojan called Sturnus is shaping up to be one of the most capable threats we have seen in a while. It ...
PCMag on MSN

This Gang Installed Malware on ATMs That Got Them to Spit Out All Their Cash

Alleged Tren de Aragua members installed the 'Ploutus' malware on ATMs to steal millions. A Venezuelan gang used malware to ...
SecurityWeek

MacSync macOS Malware Distributed via Signed Swift Application

New MacSync Stealer version is executed via a signed and notarized Swift application, eliminating the need for direct ...

Dangerous WebRAT malware now being spread by GitHub repositories

Cybersecurity researchers Kaspersky said they found 15 malicious repositories hosted on GitHub. These repositories, ...

Malware bypassed macOS Gatekeeper by abusing Apple's notarization proccess

A new variant of the MacSync Stealer uses a code-signed Swift application to get around Apple's macOS Gatekeeper protections.

Shai Hulud malware turns developers into unwitting distributors in NPM supply chain attacks

Shai Hulud is a malware campaign first observed in September targeting the JavaScript ecosystem that focuses on supply chain ...

MacSync Stealer variant finds a way to bypass Apple malware protections

We’ve recently seen how ChatGPT was used to trick Mac users into installing MacStealer, and now a different tactic ...
PCMag on MSN

From Firefox Malware to Stolen Pornhub Data: This Week's Security News Is Not Sexy

A wave of recent breaches and malware discoveries shows how easily trusted software and private data can be exploited.

WebRAT malware spread via fake vulnerability exploits on GitHub

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for ...
The Hacker News

Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence

Iranian APT Infy resurfaced after years of silence, using updated Foudre & Tonnerre malware, phishing delivery, resilient C2 ...

Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell ...