Search cyberveille.decio.ch

Found 14 bookmarks

Custom sorting

SparkCat crypto stealer in Google Play and App Store

Kaspersky experts discover iOS and Android apps infected with the SparkCat crypto stealer in Google Play and the App Store. It steals crypto wallet data using an OCR model.

#securelist #EN #2025 #Apple #iOS #Cryptocurrencies #Google-Android #Malware #Malware-Descriptions #Malware-Technologies #Mobile-Malware #Trojan #Trojan-stealer

·securelist.com·Feb 5, 2025

SparkCat crypto stealer in Google Play and App Store

XZ backdoor behavior inside OpenSSH

In this article, we analyze XZ backdoor behavior inside OpenSSH, after it has achieved RSA-related function hook.

#securelist #EN #2024 #Backdoor #Cyber-espionage #Linux #Malware #Malware-Descriptions #Malware-Technologies #SSH #Targeted-attacks #XZ

·securelist.com·Jun 24, 2024

XZ backdoor behavior inside OpenSSH

Kaspersky analysis of the backdoor in XZ

Kaspersky analysis of the backdoor recently found in XZ, which is used in many popular Linux distributions and in OpenSSH server process.

#securelist #EN #2024 #Backdoor #Cyber-espionage #Linux #Malware #analysis #Malware-Descriptions #Malware-Technologies #SSH #XZ

·securelist.com·Apr 13, 2024

Kaspersky analysis of the backdoor in XZ

A backdoor with a cryptowallet stealer inside cracked macOS software

We review a new macOS backdoor that piggybacks on cracked software to replace Bitcoin and Exodus wallets with malware.

#securelist #EN #2024 #Apple #MacOS #Backdoor #Cryptocurrencies #DNS #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-stealer

·securelist.com·Jan 22, 2024

A backdoor with a cryptowallet stealer inside cracked macOS software

StripedFly: Perennially flying under the radar

Nobody would even suspect the mining malware was merely a mask, masquerading behind an intricate modular framework that supports both Linux and Windows. The amount of effort that went into creating the framework is truly remarkable, and its disclosure was quite astonishing.

#securelist #EN #2023 #stripedfly #NSA #Data-theft #Encryption #EternalBlue #Linux #Malware-Descriptions #Malware-Technologies #Miner #Targeted-attacks #TOR

·securelist.com·Oct 26, 2023

StripedFly: Perennially flying under the radar

DNS changer in malicious mobile app used by Roaming Mantis

Roaming Mantis (a.k.a Shaoye) is a long-term cyberattack campaign that uses malicious Android package (APK) files to control infected Android devices and steal data. In 2022, we observed a DNS changer function implemented in its Android malware Wroba.o.

#securelist #EN #2023 #APT #RoamingMantis #Google-Android #Malware-Descriptions #Shaoye #Malware-Technologies #Mobile-Malware #Targeted-attacks #Trojan

·securelist.com·Jan 20, 2023

DNS changer in malicious mobile app used by Roaming Mantis

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

In this report, we compare the ROADSWEEP ransomware and ZEROCLEARE wiper versions used in two waves of attacks against Albanian government organizations.

#securelist #2022 #EN #Malware #Malware-Descriptions #Malware-Technologies #Ransomware #Targeted-attacks #Trojan #Wiper #Albania

·securelist.com·Dec 22, 2022

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

NullMixer is a dropper delivering a number of Trojans, such as RedLine Stealer, SmokeLoader, Satacom, and others.

#securelist #EN #2022 #NullMixer #dropper #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-Dropper #Trojan-stealer

·securelist.com·Sep 28, 2022

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

Kaspersky report on Luna and Black Basta ransomware

This report discusses new ransomware, that targets Windows, Linux and ESXi systems: Luna written in Rust and Black Basta.

#securelist #EN #2022 #Luna #Rust #BlackBasta #Cross-platform-malware #Cybercrime #Data-Encryption #ESXi #Linux #Malware-Descriptions #Malware-Technologies #Microsoft-Windows #Ransomware #Targeted-attacks

·securelist.com·Jul 22, 2022

Kaspersky report on Luna and Black Basta ransomware

DNS changer in malicious mobile app used by Roaming Mantis

#securelist #EN #2023 #APT #RoamingMantis #Google-Android #Malware-Descriptions #Shaoye #Malware-Technologies #Mobile-Malware #Targeted-attacks #Trojan

·securelist.com·Jan 20, 2023

DNS changer in malicious mobile app used by Roaming Mantis

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

In this report, we compare the ROADSWEEP ransomware and ZEROCLEARE wiper versions used in two waves of attacks against Albanian government organizations.

#securelist #2022 #EN #Malware #Malware-Descriptions #Malware-Technologies #Ransomware #Targeted-attacks #Trojan #Wiper #Albania

·securelist.com·Dec 22, 2022

Stolen certificates in two waves of ransomware and wiper attacks | Securelist

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

NullMixer is a dropper delivering a number of Trojans, such as RedLine Stealer, SmokeLoader, Satacom, and others.

#securelist #EN #2022 #NullMixer #dropper #Malware #Malware-Descriptions #Malware-Technologies #Trojan #Trojan-Dropper #Trojan-stealer

·securelist.com·Sep 28, 2022

NullMixer drops Redline Stealer, SmokeLoader and other malware | Securelist

Kaspersky report on Luna and Black Basta ransomware

This report discusses new ransomware, that targets Windows, Linux and ESXi systems: Luna written in Rust and Black Basta.

·securelist.com·Jul 22, 2022

Kaspersky report on Luna and Black Basta ransomware

This report discusses new ransomware, that targets Windows, Linux and ESXi systems: Luna written in Rust and Black Basta.

·securelist.com·Jul 22, 2022

Kaspersky report on Luna and Black Basta ransomware