Infosecurity-magazine.com

Can Organizations Combat Malicious Password-Protected File Attacks?

Password-protected files are an intelligent way in which attackers are working to evade enterprise security defenses and infect endpoints. Not long ago, phishing attacks were nearly always delivered ...
Dark Reading

Threat Spotlight: Proportion of Malicious HTML Attachments Doubles Within a Year

The security industry has been highlighting the cybercriminal misuse of HTML for years — and evidence suggests it remains a successful and popular attack tool. Last year we reported that around one-in ...
Bleeping Computer

Malicious VSCode Marketplace extensions hid trojan in fake PNG file

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with malware hidden inside dependency folders. The malicious activity was ...
Bleeping Computer

Hackers use macOS extended file attributes to hide malicious code

Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr. The threat actor is hiding malicious code in custom file ...
Android

[UPDATED] Researchers discover malicious PDF files that put millions at risk

UPDATE: Google’s spokesperson reached out with an update for this. This is what he said: “Based on our current detection, no apps containing this malware are found on Google Play. Android users have ...
Forbes

An Examination Of Deep File Inspection Technologies For Enhanced Cybersecurity Analytics

In today's world, businesses face a barrage of cyber threats, demanding more sophisticated and robust defensive countermeasures. As enterprises increasingly embrace digital transformations, the sheer ...
CSOonline

Threat actors increasingly using malicious virtual hard drives in phishing attacks

Threat actors are increasingly creating malicious virtual hard drives to distribute malware, in the hopes of getting around email gateways that have become good at detecting infected documents, ...
Hosted on MSN

A new malicious npm package just got caught yanking files from users’ local disks — the 'Malware-Slop' campaign targeting developers who trusted a single bad dependency

A malicious npm package tied to a campaign some observers have called “Malware-Slop” has been detected copying files from developers’ local file systems, exploiting the trust that software teams place ...
Forbes

Windows Rootkit Warning As Obscure#Bat Hides Malicious Files

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As if Windows users need any more bad news on the security ...