Cybersecurity News - Page 74

Microsoft identified over 394,000 Windows computers infected with the Lumma malware globally.

Hazy Hawk leverages “dangling” DNS CNAME records, allowing attackers to register the abandoned services and takeover subdomains associated with trusted brands.

Once users were convinced to install the extensions, the malicious code harvested browser session cookies.

The EU sanctioned Stark Industries, a Moldova-based bulletproof hosting company that has hosted a wide array of malicious activity, ranging from malware servers to websites linked to Doppelgang.

The leaked archive includes legitimate source code for the Windows encryptor builder, the affiliate management panel, and the Tor-hosted data leak site.

The malware in question was the Bumblebee loader used in various high-profile cyberattacks to deploy additional payloads.

The campaign uses legitimate Redis configuration commands to inject malicious cron jobs on vulnerable systems.

The group’s toolset includes known Chinese cyber-espionage malware such as Chinoxy, DeedRAT, Poison Ivy, and BeRAT.

The attackers used Bing ads to lure victims to fake KeePass download sites.

The law also grants authorities the ability to monitor certain international internet traffic passing through Japanese infrastructure.