In November 2024, Microsoft Incident Response discovered a new remote access trojan (RAT) named StilachiRAT. This malware employs advanced techniques to avoid detection, maintain its presence on infected systems, and steal sensitive data. StilachiRAT has been found to target passwords saved in browsers, digital wallet data, clipboard information, and more. While Microsoft has not linked ...
A new malware called MassJacker is targeting users searching for pirated software, according to CyberArk. MassJacker is a type of clipper malware designed to steal cryptocurrency by replacing copied wallet addresses with attacker-controlled ones. The attack begins on a site that appears to offer pirated software and leads to the download of various malicious files. ...
A new cyber threat named MassJacker is targeting users looking for pirated software, according to CyberArk. This clipper malware monitors clipboard content to steal cryptocurrency by replacing copied wallet addresses with those controlled by attackers. The infection chain starts at a suspicious website offering pirated software, which delivers the malware via a PowerShell script. MassJacker ...
A new clipboard hijacking malware called ‘MassJacker’ has been found, which targets cryptocurrency users. It monitors the clipboard of infected computers for cryptocurrency wallet addresses and swaps them with addresses controlled by the attackers. This operation has used over 778,000 wallet addresses and has reportedly stolen substantial amounts, with one Solana wallet alone collecting over ...
A recent email scam is impersonating Binance, attempting to lure victims into downloading a fake “Binance Desktop” to claim TRUMP coins. Instead of receiving cryptocurrency, unsuspecting users unknowingly install ConnectWise RAT, a remote access tool that allows hackers to control their computers within minutes. The attackers carefully crafted their emails and website to appear legitimate, ...
A new cybersecurity threat involving a malware called SilentCryptoMiner is targeting users by pretending to be a tool to bypass internet restrictions. According to Kaspersky, this scheme is gaining popularity among cybercriminals who use specific software to spread malware disguised as helpful applications. This particular campaign has already compromised over 2,000 Russian users by promoting ...
A recent scam has targeted job seekers in the Web3 space, using fake job interviews through a harmful meeting app called “GrassCall.” This social engineering scheme, carried out by a Russian-speaking group known as Crazy Evil, has affected hundreds of individuals, with reports of cryptocurrency wallets being drained. Victims were tricked into downloading malware disguised ...
A recent social engineering scam known as the GrassCall attack has targeted job seekers in the Web3 space, tricking them into downloading a fake meeting app that installs malware to steal cryptocurrency wallets. The Russian-speaking group behind the attack, called Crazy Evil, created a fake company profile and job listings to lure victims. Once candidates ...
Malware targeting macOS is becoming more common, particularly from North Korean hackers who are using sophisticated methods to steal sensitive data. Recent investigations uncovered two types of malware: RustDoor and a new variant of Koi Stealer, both disguised as legitimate software updates. These attackers often pose as job recruiters to lure software developers into downloading ...
Freelance software developers are facing a serious threat from a hacking campaign linked to North Korea, known as DeceptiveDevelopment. This campaign uses job interview scams to distribute malicious software like BeaverTail and InvisibleFerret, which aim to steal cryptocurrency and sensitive login information. Researchers at ESET reported that attackers target platforms like Upwork and Freelancer, using ...
