Malware
Epsilon Stealer Spread Though Malicious Game Mod
Epsilon is a malicious software designed with the intent to pilfer sensitive data. This malicious program specifically targets information stored in browsers, gaming applications, and various other software, including... Read more
How to Stop and Remove the DevExpress Malware
DevExpress, a type of rogue software often embedded with adware functionalities, poses significant risks to users' devices. This malware displays intrusive ads, promotes online scams, and can even lead to the... Read more
What is MrAnon Stealer and Does It Affect Your Computer?
MrAnon Stealer is a potent information-stealing malware that has recently emerged as a threat in the cybersecurity landscape. This malicious software is distributed through a phishing campaign that employs PDF lures... Read more
NSudo Malware
NSudo has been reported as an instance of malware, detected as Win64/NSudo!MSR bt Windows Defender. What sets this apart is that NSudo itself is not inherently malicious; rather, it is a legitimate Windows component.... Read more
Serpent Stealer Malware
Serpent is a lightweight malware classified as a stealer, designed to target log-in credentials and sensitive information from browsers and various applications. Upon successful infiltration, Serpent initiates the... Read more
LPEClient Malware Acts as Infostealer
The malware known as LPEClient emerged in 2020 as a recognized threat. Its primary purpose is to infiltrate victims' systems, gather information, and then fetch additional malicious payloads from a remote server.... Read more
Prime Stealer Malware
Prime, a malicious software, specializes in stealing sensitive information from Windows users. This crafty threat is adept at extracting a wide range of data, encompassing browser details, cryptocurrency information,... Read more
DLRAT Malware Proves to be a Dual-Threat To Vulnerable Systems
DLRAT, a potent malware crafted using the DLang programming language, serves a dual role as both a Remote Access Trojan (RAT) and a downloader. This malicious software is notably associated with the cybercrime group... Read more
Trojan-Proxy Malware May Target Multiple Operating Systems
Unauthorized websites distributing tampered versions of cracked software have been identified as sources of infection for Apple macOS users with a novel Trojan-Proxy malware. Researchers explained that perpetrators... Read more
Puamson Potentially Unwanted App
PUA:Win32/Puamson.A!ml is a detection indicating the presence of a potentially unwanted application, often introduced to the computer through the installation of freeware bundles. Instances of infection may also... Read more
Trap Stealer Malware
TrapStealer, a versatile malware designed for information theft, is known for its ability to target a broad spectrum of data, with a particular focus on information associated with the Discord messaging platform. Once... Read more
GHOSTPULSE Malware Spread Through Fake MSIX Applications
A recent cyber attack campaign has been detected, utilizing fake MSIX Windows application package files for well-known software like Google Chrome, Microsoft Edge, Brave, Grammarly, and Cisco Webex as a means to... Read more
Unicom Malware Might Contain Infostealing Features
Our researchers determined that Unicom is a malicious application, distinct and unrelated to UNICOM Global, which is a legitimate corporate entity. The Unicom malware is distributed through a malicious installer found... Read more
NineRAT Malware Targets Systems Uses Tactics of Lazarus Hacker Group
Cisco Talos recently uncovered a new cyber campaign orchestrated by the Lazarus Group, named "Operation Blacksmith." This operation employs three novel DLang-based malware families, with two identified as remote... Read more
Atuct Application Malicious File Detection
The designated name "Atuct Application" is a general handle for potentially any executable file found on a Windows computer, and it may either be a legitimate file associated with the applications installed, or it... Read more
IMAPLoader Malware Linked to Iranian Threat Actor
The Iranian threat actor known as Tortoiseshell, also tracked by names such as Crimson Sandstorm, Imperial Kitten, TA456, and Yellow Liderc, has been attributed to a new wave of watering hole attacks involving the... Read more
Socks5Systemz Botnet Infected Thousands of Devices
Researchers from BitSight have unveiled a proxy botnet known as Socks5Systemz, which was delivered via the PrivateLoader and Amadey loaders. The name Socks5Systemz is derived from the consistent login panel found on... Read more
BiBi-Linux Wiper Malware Used Against Israeli Targets
A newly discovered malware called BiBi-Linux is being employed in attacks aimed at Linux systems owned by Israeli companies, with the intent of erasing data. The Incident Response team at Security Joes uncovered this... Read more
