Posted inNews
From Dark Reading – Gootloader Malware Resurfaces in Google Ads for Legal Docs
Attackers target a familiar industry, law professionals, by hiding the infostealer in ads delivered via Google-based malvertising. Read More
Posted inNews
From Dark Reading – Attackers Pivot to SEMrush Spoof to Steal Google Credentials
The attackers are taking an indirect approach to targeting SEO professionals and their Google credentials, using a fake digital marketing website. Read More
Posted inNews
From The Hacker News – OBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade Detection
A new malware campaign has been observed leveraging social engineering tactics to deliver an open-source rootkit called r77.
The activity, condemned OBSCURE#BAT by Securonix, enables threat actors to establish persistence and evade detection on compromised systems. It's currently not known who is behind the campaign.
The rootkit "has the ability to cloak or mask any file, registry key or task
Posted inNews
From Dark Reading – GitHub-Hosted Malware Infects 1M Windows Users
Microsoft has identified a complex, malvertising-based attack chain that delivered Lumma and other infostealers to enterprise and consumer PC users; the campaign is unlikely the last of its kind. Read More
Posted inNews
From Cyber Security News – Hackers Exploited XSS Vulnerability in Popular Framework to Hijack 350+ Websites
A cross-site scripting (XSS) vulnerability within the Krpano framework, a popular tool for embedding 360° images and creating virtual tours, has been exploited to inject malicious scripts into over 350…
Posted inNews
From Security Week – Sites of Major Orgs Abused in Spam Campaign Exploiting Virtual Tour Software Flaw
[[{"value":"The websites of dozens of major private and government organizations have been abused in a massive spam campaign that involves exploitation of a vulnerability affecting widely used virtual tour software.…
Posted inNews
From The Hacker News – Hackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ Websites
A cross-site scripting (XSS) vulnerability in a virtual tour framework has been weaponized by malicious actors to inject malicious scripts across hundreds of websites with the goal of manipulating search results and fueling a spam ads campaign at scale.
Security researcher Oleg Zaytsev, in a report shared with The Hacker News, said the campaign – dubbed 360XSS – affected over 350 websites,