Tag: Infections
-
‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections
Security flaws in your computer’s firmware, the deep-seated code that loads first when you turn the machine on and controls even how its …
-
Examining Water Sigbin’s Infection Routine Leading to an XMRig Cryptominer
We analyze the multi-stage loading technique used by Water Sigbin to deliver the PureCrypter loader and XMRIG crypto miner. …
-
Wineloader – Analysis of the Infection Chain
By ARC Labs contributor, Shannon Mong ARC Labs recently analyzed a sample of the Wineloader backdoor for infection chain analysis and …
-
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT
Cybersecurity researchers have shed more light on a remote access trojan (RAT) known as Deuterbear used by the China-linked BlackTech …
-
Infections with abandoned PlugX USB worm continue to be prevalent
Millions of devices could still be compromised by the abandoned PlugX USB worm with self-replicating functionality, with infections logged …
-
Live Forensic Techniques To Detect Ransomware Infection On Linux Machines
Ransomware, initially a Windows threat, now targets Linux systems, endangering IoT ecosystems. Linux ransomware employs diverse encryption …
-
xz-utils Backdoor Affects Kali Linux Installations – How to Check for Infection
A critical vulnerability has been identified in the xz-utils package, versions 5.6.0 to 5.6.1, which harbors a backdoor capable of …
-
NetSupport RAT Infections on the Rise – Targeting Government and Business Sectors
Threat actors are targeting the education, government and business services sectors with a remote access trojan called NetSupport RAT. “The …
-
Malvertising Is Once Again on the Rise Leading to Malware Infections
The Rise (again) of Malicious Advertisements In the constantly evolving landscape of cybersecurity threats, malicious advertisements (also …
-
Unkillable? Qakbot Infections Fly On Even After Its High-Profile Raid
The Qakbot (aka Qbot) first-stage malware operation is still kicking, even after the “Operation Duck Hunt” raid by law enforcement …
-
U.S. Hacks QakBot, Quietly Removes Botnet Infections
The U.S. government today announced a coordinated crackdown against QakBot, a complex malware family used by multiple cybercrime groups to …
-
NSA Releases Guide to Mitigate BlackLotus Bootkit Infections
The US National Security Agency (NSA) has released a comprehensive mitigation guide to address the BlackLotus malware. According to the …
●●●