-
Hackers use macOS extended file attributes to hide malicious code
Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr.
- November 13, 2024
- 05:53 PM
0
-
Hackers now use ZIP file concatenation to evade detection
Hackers are targeting Windows machines using the ZIP file concatenation technique to deliver malicious payloads in compressed archives without security solutions detecting them.
- November 10, 2024
- 10:13 AM
2
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
New Qilin ransomware encryptor features stronger encryption, evasion
A new Rust-based variant of the Qilin (Agenda) ransomware strain, dubbed 'Qilin.B,' has been spotted in the wild, featuring stronger encryption, better evasion from security tools, and the ability to disrupt data recovery mechanisms.
- October 24, 2024
- 11:19 AM
- 0
-
EDRSilencer red team tool used in attacks to bypass security
A tool for red-team operations called EDRSilencer has been observed in malicious incidents attempting to identify security tools and mute their alerts to management consoles.
- October 15, 2024
- 02:47 PM
- 3
-
Linux malware “perfctl” behind years-long cryptomining campaign
A Linux malware named "perfctl" has been targeting Linux servers and workstations for at least three years, remaining largely undetected through high levels of evasion and the use of rootkits.
- October 03, 2024
- 10:33 AM
- 0
-
ViperSoftX malware covertly runs PowerShell using AutoIT scripting
The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection.
- July 10, 2024
- 03:22 PM
- 1
-
Winnti's new UNAPIMON tool hides malware from security software
The Chinese 'Winnti' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected.
- April 02, 2024
- 05:59 PM
- 0
-
StopCrypt: Most widely distributed ransomware evolves to evade detection
A new variant of StopCrypt ransomware (aka STOP) was spotted in the wild, employing a multi-stage execution process that involves shellcodes to evade security tools.
- March 14, 2024
- 04:59 PM
- 3
-
PixPirate Android malware uses new tactic to hide on phones
The latest version of the PixPirate banking trojan for Android employs a previously unseen method to hide from the victim while remaining active on the infected device even if its dropper app has been removed.
- March 13, 2024
- 02:13 PM
- 1
-
New Bifrost malware for Linux mimics VMware domain for evasion
A new Linux variant of the Bifrost remote access trojan (RAT) employs several novel evasion techniques, including the use of a deceptive domain that was made to appear as part of VMware.
- February 29, 2024
- 04:36 PM
- 0
-
MacOS info-stealers quickly evolve to evade XProtect detection
Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and report about new variants frequently.
- January 16, 2024
- 04:29 PM
- 1
-
FjordPhantom Android malware uses virtualization to evade detection
A new Android malware named FjordPhantom has been discovered using virtualization to run malicious code in a container and evade detection.
- November 30, 2023
- 09:00 AM
- 0
-
Hackers exploit Windows policy to load malicious kernel drivers
Microsoft blocked code signing certificates predominantly used by Chinese hackers and developers to sign and load malicious kernel mode drivers on breached systems by exploiting a Windows policy loophole.
- July 11, 2023
- 01:00 PM
- 1
-
New malware variant has “radio silence” mode to evade detection
The Sharp Panda cyber-espionage hacking group was observed targeting high-profile government entities in Vietnam, Thailand, and Indonesia, using a new version of the 'Soul' malware framework.
- March 07, 2023
- 05:49 PM
- 2
-
New stealthy 'Beep' malware focuses heavily on evading detection
A new stealthy malware named 'Beep' was discovered last week, featuring many features to evade analysis and detection by security software.
- February 14, 2023
- 09:44 AM
- 1
-
Raspberry Robin worm drops fake malware to confuse researchers
The Raspberry Robin malware is now trying its hand at some trickery by dropping a fake payload to confuse researchers and evade detection when it detects it's being run within sandboxes and debugging tools.
- December 20, 2022
- 10:15 AM
- 0
-
Twitter images can be abused to hide ZIP, MP3 files — here's how
Yesterday, a researcher disclosed a method of hiding up to three MB of data inside a Twitter image. In his demonstration, the researcher showed both MP3 audio files and ZIP archives contained within the PNG images hosted on Twitter.
- March 17, 2021
- 10:50 AM
- 1
-
Microsoft shares how SolarWinds hackers evaded detection
Microsoft today shared details on how the SolarWinds hackers were able to remain undetected by hiding their malicious activity inside the networks of breached companies.
- January 20, 2021
- 03:54 PM
- 0
-
Linux malware authors use Ezuri Golang crypter for zero detection
Multiple malware authors are using the "Ezuri" crypter and memory loader written in Go to evade detection by antivirus products. Source code for Ezuri is available on GitHub for anyone to use.
- January 07, 2021
- 06:00 AM
- 2
-
TrickBot malware uses obfuscated Windows batch script to evade detection
This week researchers analyze BAT script obfuscation techniques used by Trickbot's 100 to evade antivirus detection.
- November 24, 2020
- 09:00 AM
- 0
.jpg)
- 1
- 2
