Fake KeePass Version Executes Ransomware Attacks
A malicious version of the popular open-source password manager KeePass is being used to launch ransomware attacks on VMware ESXi servers. Security researchers have uncovered a trojanized variant, dubbed “KeeLoader” that mimics the real interface while silently compromising users' systems. Once installed, this fake KeePass plants a Cobalt Strike beacon and exfiltrates the user’s password database in plaintext. Thus, paving
Skitnet Malware Fuels Ransomware Attacks
Ransomware gangs are evolving fast, and their newest weapon, Skitnet malware, proves it. Known alternately as “Bossnet,” this emerging post-exploitation malware is gaining traction among threat actors like BlackBasta and Cactus. Designed for stealth, Skitnet leverages in-memory execution, DNS-based command and control, and anti-forensics to maintain a low profile while enabling persistent remote access. As its use spreads in phishing
Procolored Distributed Malware-Laced Drivers for Half a Year
In an alarming cybersecurity lapse, popular printer brand Procolored has unknowingly distributed malware-infected drivers via its official website for at least six months. The infected software included a Remote Access Trojan (RAT) called XRedRAT and a cryptocurrency stealer known as SnipVex, both capable of compromising user systems and exfiltrating sensitive data. What Happened? The malware was embedded in driver installation
Hackers Hiding Malware in JPEG in a New Wave of Attacks
In today’s cybersecurity landscape, even the most ordinary-looking files can be vehicles for sophisticated attacks. Recent findings have exposed a new method used by cybercriminals - hackers hiding malware in JPEG files to bypass security systems. This technique, known as steganography, allows attackers to hide harmful scripts inside files that appear completely harmless, turning images into a serious cybersecurity threat.
Fake AI Apps: Cybercriminals Trick Users and Spread Malware
As AI tools skyrocket in popularity, they’re attracting more than just curious users and developers. Cybercriminals are seizing the moment, creating fake AI apps that promise powerful capabilities. They instead deliver something far more sinister: malware. Disguised as legitimate AI-powered platforms, these deceptive tools are being promoted through social media, especially Facebook, and are tricking thousands of users into downloading
