#Lumma – Xynik

Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates

October 15, 2024 by Xynik

October 15, 2024 at 03:42AM Cybersecurity researchers identified a new malware campaign delivering Hijack Loader artifacts signed with legitimate certificates. The campaign employs deceptive tactics like fake CAPTCHA pages and PowerShell scripts to deploy the Lumma information stealer. Meanwhile, other malware, including CoreWarrior and XWorm, exhibit increasing sophistication and capabilities in cyberattacks. ### Meeting Takeaways … Read more

Microsoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza Stealers

July 24, 2024 by Xynik

July 24, 2024 at 03:04AM A Microsoft Defender SmartScreen security flaw, CVE-2024-21412, was exploited in a campaign targeting Spain, Thailand, and the U.S. to deliver ACR Stealer, Lumma, and Meduza. Attackers use booby-trapped files to drop malicious payloads, bypassing SmartScreen protection. This highlights the ongoing threat of information stealers and the need for vigilance in … Read more

‘Etherhiding’ Blockchain Technique Hides Malicious Code in WordPress Sites

October 17, 2023 by Xynik

October 17, 2023 at 01:11PM Attackers have been using proprietary blockchain technology to conceal malicious code in a campaign involving fake browser updates. The campaign, called ClearFake, tricks users into downloading fake browser updates from compromised WordPress sites. The attackers use a technique called “EtherHiding” to host malicious code on Binance Smart Chain contracts, making … Read more