Gaming-Related Phishing Trends

Sep 12, 2022 9:37:39 AM By Stu Sjouwerman

Researchers at Kaspersky have found that the vast majority of gaming-related malware lures are targeted at Minecraft players. Roblox came in at a distant second, and the researchers note ...

Lost in Translation? New Cryptomining Malware Attacks Based in Turkey Cause Suspicion

Aug 31, 2022 9:30:07 AM By Stu Sjouwerman

Researchers at Check Point warn that attackers based in Turkey are distributing cryptomining malware via free software distribution websites, including Softpedia and uptodown. The ...

Malvertising With Google Ads

Jul 26, 2022 11:39:56 AM By Stu Sjouwerman

Researchers at Malwarebytes warn that a large malvertising campaign is exploiting Google ads to redirect users to phishing sites.

[Heads Up] The Ukraine War Started A New Wiper Malware Spillover Risk

Feb 25, 2022 7:12:46 AM By Stu Sjouwerman

The war in Ukraine increases the risk of wiper malware to spill over. I'm sure you remember NotPetya, which caused billions of dollars of downtime damage. The WSJ reports that Symantec ...

8 New Malware Payloads Spotted As Part of Attacks Against Ukrainian Targets

Feb 1, 2022 2:40:07 PM By Stu Sjouwerman

Security Threat Researchers at Symantec have published details about malware being put out by the “Gamaredon” threat group (who have been tied to Russian Federal Security Service), ...

Dark Web Service Sells Access to Compromised Accounts and Browser Sessions

Jan 27, 2022 9:13:53 AM By Stu Sjouwerman

When we hear about compromised credentials, there’s always the question of “How are they used post-compromise?” In one case, they are fully on display for sale to the highest bidder.

Malicious Office Documents Jump to 37% of All Malware Downloads at the End of 2021

Jan 27, 2022 9:13:49 AM By Stu Sjouwerman

With the ubiquitous use of Microsoft Office today, it should come as no surprise that malicious macro-laden documents continue to reign, with PPT files delivering AgentTesla taking the ...

Ingenious New Attack Technique Uses Windows Store to Install Malware

Dec 2, 2021 8:51:44 AM By Stu Sjouwerman

Just when you thought threat actors couldn’t find another way to launch a dropper, a new method has surfaced that takes advantage of native functionality found in Windows 10.

New Dangerous and Persistent "Metamorphic" Malware Strain Called Tardigrade

Nov 23, 2021 9:24:52 AM By Stu Sjouwerman

Michael Kan at PCMag reported on this new strain of Windows malware. It can constantly adapt to avoid detection and was first found targeting the biotech industry, including the ...

Google Ads Abused to Deliver Malware

Sep 28, 2021 8:40:32 AM By Stu Sjouwerman

Cybercriminals are using malicious Google Ads to deliver the ZLoader banking Trojan, ZDNet reports. Researchers at Microsoft stated on Twitter that attackers are purchasing Google Ads ...

CISA Publishes Darkside Malware Analysis Report and Updated Best Practice Guidance Against Ransomware

Jul 15, 2021 10:44:00 AM By Stu Sjouwerman

New details provide valuable insight into exactly how Darkside works to compromise and encrypt systems, with valuable guidance to avoid becoming a victim of ransomware.

Phishing Campaign Uses Novel Technique to Deliver Malware

Jul 14, 2021 11:25:51 AM By Stu Sjouwerman

Researchers at McAfee warn that a phishing campaign is delivering malware via Word documents that don’t contain any malicious code. When a user opens the document and enables content, the ...

Yet Another Disk Image File Format Spotted in the Wild Used to Deliver Malware

Jun 29, 2021 2:00:41 PM By Stu Sjouwerman

Disguised as an invoice, cybercriminals use a Windows-supported disk image to obfuscate malware from email gateways and security scanners. The question is how viable will it be?

Call Centers Used to Distribute BazarLoader

May 27, 2021 9:21:37 AM By Stu Sjouwerman

Cybercriminals are using call centers to trick users into downloading the BazarLoader malware, according to researchers at Palo Alto Networks’ Unit 42. By relying on social engineering to ...

A New Smishing Trojan is Out and About

May 12, 2021 9:49:21 AM By Stu Sjouwerman

Researchers at Pradeo have observed a new Android malware campaign that uses text messages asking victims to pay a small fee for a delivery. The messages contain a link that will install ...

New IceID Phishing Attack Targets Website Owners Using Image Copyright Infringement as The Hook

May 6, 2021 9:00:16 AM By Stu Sjouwerman

Spotted by the Microsoft 365 Defender Threat Intelligence Team, this new phishing attack threatens legal action to trick victims into installing information-stealing malware.

[HEADS UP] New Malware Families Found in Phishing Campaign

May 5, 2021 1:36:54 PM By Stu Sjouwerman

Researchers from FireEye's security team found new malware families in a financial phishing campaign. The Malware strains are dubbed Doubledrag, Doubledrop, and Doubleback and have been ...

APT Group Use Voice-Changing Software to Impersonate Women as Part of Espionage Attacks

Apr 9, 2021 8:34:02 AM By Stu Sjouwerman

The middle eastern threat group known as APT-C-23 are targeting male soldiers in the Israel Defense Forces in an attempt to get their victims to download and install malware.

Why Should You Be Using DMARC? 3 Billion Spoofed Emails are Being Sent Everyday

Mar 23, 2021 12:51:07 PM By Stu Sjouwerman

In a recent report from TechRadar, email is still the most popular form of malware distribution. Billions of emails that are spoofed are being sent everyday.

Credential Harvesting Attacks Targeting the U.S. Federal Government Nearly Double as Malware Declines

Mar 11, 2021 9:07:03 AM By Stu Sjouwerman

Shifts to a remote workforce in 2020 gave cybercriminals an opportunity to change tactics, focusing on credentialed access to systems accessed from outside government networks.

Security Awareness Training Blog

Malware Blog

View Topics

Gaming-Related Phishing Trends

Lost in Translation? New Cryptomining Malware Attacks Based in Turkey Cause Suspicion

Malvertising With Google Ads

[Heads Up] The Ukraine War Started A New Wiper Malware Spillover Risk

8 New Malware Payloads Spotted As Part of Attacks Against Ukrainian Targets

Dark Web Service Sells Access to Compromised Accounts and Browser Sessions

Malicious Office Documents Jump to 37% of All Malware Downloads at the End of 2021

Ingenious New Attack Technique Uses Windows Store to Install Malware

New Dangerous and Persistent "Metamorphic" Malware Strain Called Tardigrade

Google Ads Abused to Deliver Malware

CISA Publishes Darkside Malware Analysis Report and Updated Best Practice Guidance Against Ransomware

Phishing Campaign Uses Novel Technique to Deliver Malware

Yet Another Disk Image File Format Spotted in the Wild Used to Deliver Malware

Call Centers Used to Distribute BazarLoader

A New Smishing Trojan is Out and About

New IceID Phishing Attack Targets Website Owners Using Image Copyright Infringement as The Hook

[HEADS UP] New Malware Families Found in Phishing Campaign

APT Group Use Voice-Changing Software to Impersonate Women as Part of Espionage Attacks

Why Should You Be Using DMARC? 3 Billion Spoofed Emails are Being Sent Everyday

Credential Harvesting Attacks Targeting the U.S. Federal Government Nearly Double as Malware Declines

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search