tldrdaily.news logo
Tag

Information Stealing

All articles tagged with #information stealing

cybersecurity2 years ago

"SpyNote Android Malware Exploits Fake Volcano Alerts for Widespread Infiltration"

The Android malware known as SpyNote is spreading through a fake IT-alert public alert service in Italy, infecting visitors with information-stealing capabilities. The fake website warns of an imminent volcano eruption and prompts users to install the app to stay informed. When Android users download the app, they unknowingly install the SpyNote malware, granting it permission to perform invasive actions on the compromised device. SpyNote can steal user credentials, record camera footage and phone calls, track GPS location, and target Google and Facebook accounts. The malware's prominence has increased following the leak of its source code, leading to custom variants targeting specific banks and masquerading as popular apps. Google has confirmed that SpyNote is not present on any apps available on Google Play.

via BleepingComputer|
#android-malware#cybersecurity#fake-website
cybersecurity2 years ago

Beware of ZenRAT Malware: Fake Password Manager Targets Windows Users

A new strain of malware called ZenRAT is targeting Windows users through fake installation packages of the Bitwarden password manager. The malware is a modular remote access trojan (RAT) with information stealing capabilities. It is distributed via fake websites posing as Bitwarden and redirects non-Windows users to benign pages. The payload contains a trojanized version of the Bitwarden installation package. ZenRAT gathers host details and transmits them to a command-and-control server operated by the threat actors. Users are advised to download software from trusted sources and verify website authenticity.

via The Hacker News|
#bitwarden#cybersecurity#information-stealing
cybersecurity2 years ago

"Linux Users Unknowingly Exposed to Malware via Free Download Manager Site"

Free Download Manager, a popular software, was involved in a supply chain attack that redirected Linux users to a malicious Debian package repository, resulting in the installation of information-stealing malware. The malware established a reverse shell to a command-and-control server and installed a Bash stealer that collected user data and account credentials. The campaign went undetected for over three years, and despite being informed, the software vendor has not responded. The attack was facilitated through the official download page, which occasionally redirected users to the malicious domain. The malware-infected package was disseminated through social media and online forums, with users unaware of the compromise. The malicious package dropped a Bash information-stealing script and a backdoor, allowing the attackers to collect sensitive information. The malware remained undetected due to the rarity of Linux malware and limited redirection to the unofficial URL.

via BleepingComputer|
#cybersecurity#free-download-manager#information-stealing
cybersecurity2 years ago

Fracturiser Malware Spreads Through Minecraft Mods and Plug-ins

Hackers used the popular Minecraft modding platforms Bukkit and CurseForge to distribute a new 'Fractureiser' information-stealing malware through uploaded modifications and by injecting malicious code into existing projects. The attack compromised several CurseForge and Bukkit accounts and impacted popular modpacks such as 'Better Minecraft,' which has over 4.6 million downloads. The malware is capable of self-propagating, stealing cookies and account credentials, replacing cryptocurrency wallet addresses, and stealing Microsoft, Discord, and Minecraft account credentials. Minecraft players should avoid using the CurseForge launcher or downloading anything from the CurseForge or the Bukkit plugin repositories until the situation clears up.

via BleepingComputer|
#curseforge#cybersecurity#hackers