New DDoS Botnet ‘Condi’ Targets Vulnerable TP-Link AX21 Routers
FortiGuard Labs has identified numerous Condi DDoS botnet samples that exploit other known security flaws, putting unpatched software at a higher risk of being exploited by botnet malware.
Supply Chain Attack: Abandoned S3 Buckets Used for Malicious Payloads
Threat actors have been taking over abandoned S3 buckets to launch malicious binaries, steal login credentials and more.
The Reddit Files: Hackers Demand $4.5M Ransom and API Access Waiver
The hackers from the infamous BlackCat ransomware gang (also known as ALPHV) have claimed to have stolen 80GB of data from Reddit.
Fake Ads Manager Software and Malicious Extensions Target Facebook Accounts
The perpetrators of the attack on Facebook Accounts are Vietnamese, as confirmed by Malwarebytes.
Windows Users Alert: Skuld Malware Steals Discord and Browser Data
Skuld malware, named after the Norse goddess associated with the future and fate employs sophisticated techniques to infiltrate Windows systems and gain unauthorized access to sensitive information.
Windows Users Beware: Crooks Relying on SeroXen RAT to Target Gamers
Currently, SeroXen RAT is delivered either via phishing emails or Discord channels.
Stealing From Wallets to Browsers: Bandit Stealer Hits Windows Devices
Watch out for the Bandit Stealer malware that is being distributed through phishing emails.
Mirai Malware Hits Zyxel Devices After Command Injection Bug
A variant of the Mirai botnet is targeting Zyxel Firewalls after exploiting a newly patched operating system command injection vulnerability.
Gaming Firms and Community Members Hit by Dark Frost Botnet
According to researchers, the most prominent targets of Dark Frost include gaming companies, online streaming services, game server hosting providers, and gaming community members.
CapCut Users Beware: Phishing Sites Distributing Malware
If you use TikTok, you must be aware of CapCut. However, did you know that this app is being abused by threat actors to drop malware and carry out phishing scams through not one, but a series of malicious sites?