Chinese Volt Typhoon APT Targets US Entities
The Chinese nation-state actor known as Volt Typhoon, also referred to as Bronze Silhouette, has recently been discovered to be actively conducting cyber espionage operations since mid-2020. The group, identified by... Read more
Sqoo Search Engine Rogue Browser Extension
The browser hijacker known as Sqoo search engine is an extension that alters browser settings to generate redirects through the fake search engines sharesceral.uno and sqoo.co. Moreover, this extension invasively... Read more
'!!Rootkit!! Malware Detected' Pop-Up Scam
During our examination of suspicious websites and related advertisements, we encountered a scam site that employs deceptive pop-up messages to falsely claim that the user's Windows operating system is infected. These... Read more
Desirepurplestock.com is a Misleading Website
Desirepurplestock.com is a malicious website that employs deceptive tactics to trick users into subscribing to its push notifications, allowing it to send spam notifications directly to their computer or phone. By... Read more
Udaigen Ransomware Will Encrypt Victim Files
During our investigation of new file submissions, our team made an interesting discovery - a ransomware variant called Udaigen. This malicious program functions by encrypting files and then demanding a ransom in... Read more
Operation Triangulation Targets iOS Devices with Novel Malware
While monitoring the network traffic of their dedicated corporate Wi-Fi network for mobile devices, researchers at Securelist detected suspicious activity originating from multiple iOS-based phones. Due to the... Read more
PrimaryRemote Mac Adware
During a regular inspection of newly submitted files, our team of researchers came across the PrimaryRemote application. Upon examination, it was discovered that this app functions as adware, which means it is... Read more
CISA: US Government Hit With New Russian Cyberattacks
According to new reports, multiple US government agencies, as well as “several hundred” companies and organizations have been targeted as part of a recent Russian-based hacking spree. Eric Goldstein, executive... Read more
Heavypcprotection.com Uses Fake Virus Scares to Push Ads
During our investigation into web pages associated with unreliable advertising networks, we came across the website heavypcprotection.com. Our findings unveiled that heavypcprotection.com is an untrustworthy site... Read more
Vanttop.com Pushes Ads Through Fake Anti-Bot Check
Our team has uncovered vanttop.com, a deceitful website that aims to deceive visitors into granting permission for notification display. The content on vanttop.com is misleading, consisting of an image and text, and... Read more
Critical Vulnerability Found in WordPress E-Commerce Plugin Used by Over 30,000 Online Stores
It has been reported that the WordPress "Abandoned Cart Lite for WooCommerce" plugin, installed on more than 30,000 websites, has a critical security vulnerability. According to an advisory from Defiant's Wordfence,... Read more
FadeStealer Employed by ScarCruft APT
The North Korean threat group ScarCruft has recently been observed utilizing a previously undisclosed information-stealing malware that includes wiretapping capabilities. Additionally, they have developed a backdoor... Read more