July 25, 2024 at 06:42PM CrowdStrike’s threat intel team warns of a new scam using the Lumma infostealing malware, targeting Windows users. The malware extracts sensitive data for criminal use, such as online banking and cryptocurrency credentials. The scam leverages a fake CrowdStrike domain, posing as a recovery tool for a previous faulty sensor update. … Read more
November 25, 2023 at 05:08PM The ‘ClearFake’ campaign, initially targeting Windows users with fake Chrome update prompts, has now expanded to Macs. The campaign utilizes Atomic Stealer (AMOS) malware to infect macOS computers. The malware disguises itself as a Safari update and attempts to steal sensitive information such as passwords, credit card details, and cryptocurrency … Read more
November 20, 2023 at 09:42AM The Lumma information-stealing malware is using a unique method to avoid detection. It measures mouse movements using trigonometry to determine if it is operating on an actual machine or in an antivirus sandbox. This version of the malware also includes control flow obfuscation, XOR encrypted strings, and other evasion techniques … Read more