Topic
malware
Technology Cost of ransomware recovery too high? Here’s how to stop footing the bill
Ransomware attacks cost organizations $57 billion globally last year, with costs expected to rise to $275 billion by 2031. To reduce recovery costs, organizations must align IT operations and security teams beyond traditional security-only planning. Regulations like NIS2 and DORA in the EU now place responsibility on senior leadership.
MASCOT-Android: Automated Pipeline and Curated Dataset for Android Malware Source Code Discovery
Researchers introduce MASCOT-Android, a curated dataset of Android malware source code and an automated collection framework. The key finding is that repository-level documentation alone provides a strong signal, enabling a LinearSVC classifier to achieve 96.28% accuracy with a 1.06% false positive rate. The model outputs confidence scores for threshold adjustment, making it practical for real-world malware source code collection.
Technology Hackers Use TikTok Videos Promising Free Spotify Premium to Deploy Malware
A report from ReversingLabs reveals hackers are using TikTok and Instagram Reels videos offering fake free subscriptions to Spotify Premium, Windows, Office, and Adobe to trick victims into running malicious PowerShell commands. The attack installs the Vidar infostealer, which steals passwords, cookies, session tokens, and cryptocurrency wallet data. This marks a shift from email phishing to social engineering on short-form video platforms.
Technology Phishing campaign exploiting Google Cloud links reaches 12,000 servers worldwide
An investigation by Comparitech revealed a coordinated phishing and spam network spanning 12,704 servers across 55 countries. Attackers use Google Cloud Storage links to evade detection, with fake New York Times pages as decoys. 99.8% of servers run end-of-life software, and 89% had no prior abuse history, indicating a rapidly rotating infrastructure aimed at bypassing traditional security tools.
Technology Malware Chain Concealed in Trusted Windows Tools
A sophisticated malware campaign exploits Google's ad infrastructure to disguise its activities, embedding itself within trusted Windows tools. This five-stage attack leverages legitimate processes to evade detection.
Technology Fake X-VPN Installers Spread Malware: Protect Your Credentials
Fake X-VPN installers have been found to spread credential-stealing malware, targeting users who download from unofficial sources. The malware, known as STX RAT, can steal credentials and give attackers remote control of infected devices. Users are advised to download software only from official sources to avoid such threats.
Technology Microsoft Disables 73 GitHub Repos After Malware Breach
Microsoft has disabled 73 GitHub repositories after hackers used stolen credentials to plant malware. The breach affected multiple organizations, including Azure, and led to significant disruptions. Microsoft is investigating and has notified affected customers.