March 26, 2024 at 02:42PM Lumen Technologies’ Black Lotus Labs discovered a 40,000-strong botnet comprised of end-of-life routers and IoT devices, used by a cybercriminal group to power the Faceless proxy service. The botnet, in operation since 2014, has grown to 40,000 bots from 88 countries. Researchers urge network defenders to watch for attacks on … Read more
February 28, 2024 at 03:21AM Mexican users have been targeted with tax-themed phishing lures since November 2023 to distribute a new Windows malware called TimbreStealer. The skilled authors use sophisticated tactics like geofencing and obfuscation to evade detection and ensure persistence. The malware harvests a wide range of data and targets various industries, with a … Read more
December 21, 2023 at 04:28PM Google and Twitter ads are promoting a malicious cryptocurrency drainer called ‘MS Drainer,’ responsible for stealing $59 million from over 63,000 victims. The drainer operates through phishing websites and malicious contracts, with its source code sold to cybercriminals for $1,500. Fraudulent ads for MS Drainer appear on Google and Twitter, … Read more
December 20, 2023 at 05:57AM Chinese-speaking threat actors, known as Smishing Triad, have impersonated the UAE Federal Authority for Identity and Citizenship to send malicious SMS messages aimed at gathering sensitive information. They utilize URL-shortening services and fake websites. The group also offers smishing kits for sale and engages in Magecart-style attacks. Another disclosure involves … Read more