Anti-Malware Research

Details on Apple’s Shortcuts Vulnerability: A Deep Dive into CVE-2024-23204 2024-02-22 at 16:03 By Jubaer Alnazi JABIN CVE-2024-23204 [https://nvd.nist.gov/vuln/detail/CVE-2024-23204] sheds light on the critical importance of continuous security vigilance. Apple’s Shortcuts application, designed to enhance user automation, can inadvertently become a potential vector for privacy breaches. This analysis aims to provide users, developers, and security […]

Audio deepfakes: Celebrity-endorsed giveaway scams and fraudulent investment opportunities flood social media platforms 2024-02-14 at 16:01 By Nicolae POSTOLACHI Bitdefender Labs has been keeping up with the latest modus operandi of cybercrooks who adapt emerging technologies to siphon money from consumers. Artificial intelligence is just one of the many tools that help in the creation

New MacOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group 2024-02-08 at 22:31 By Andrei LAPUSNEANU Bitdefender researchers have discovered a new backdoor targeting Mac OS users. This previously undocumented family of malware is written in Rust and includes several interesting features. While the investigation is ongoing, we’re sending out this alert

Investigating Worldwide SMS Scams, and Tens of Millions of Dollars in Fraud 2024-01-25 at 15:16 By Alexandra BOCEREG SMS services remain a critical part of telecommunications; they don’t require Internet access, and companies use them to inform their customers. This combination of features makes them incredibly useful for criminals who use the technology as a

Stream-Jacking 2.0: Deep fakes power account takeovers on YouTube to maximize crypto-doubling scams 2024-01-18 at 15:02 By Ionut Alexandru BALTARIU As of October 2023, researchers at Bitdefender Labs have been actively keeping tabs [https://www.bitdefender.com/blog/labs/a-deep-dive-into-stream-jacking-attacks-on-youtube-and-why-theyre-so-popular/] on steam-jacking attacks against high-profile YouTube accounts used to conduct a myriad of crypto doubling scams. Fast forward to 2024; our

Unveiling Mobile App Secrets: A 6-Month Deep Dive into Surprising Behavior Patterns 2024-01-08 at 14:02 By Silviu STAHIE Bitdefender launched in May 2023, an industry-first technology called App Anomaly Detection [https://www.bitdefender.com/blog/labs/app-anomaly-detection-technology-from-bitdefender-to-protect-against-yet-unknown-threats/] that gave the security solutions feature in our mobile security solution for Android the power to analyze app behavior and identify threats based on

The anatomy of a scam: ‘Like YouTube Videos and Get Paid’ schemes 18/12/2023 at 16:02 By Nicolae POSTOLACHI Have you ever considered a remote job that only requires you to click the like or subscribe button on YouTube videos? If you have, we’re sorry to say it’s a scam. This month, researchers at Bitdefender Labs

NodeStealer attacks on Facebook take a provocative turn – threat actors deploy malvertising campaigns to hijack users’ accounts 31/10/2023 at 16:04 By Andrei ANTON-AANEI Social media platforms offer immense opportunities for financially motivated threat actors to conduct large-scale attacks against unsuspecting Internet users. Fraudulent and malicious threats are prevalent on all social networks and it

A Deep Dive into Stream-Jacking Attacks on YouTube and Why They’re So Popular 04/10/2023 at 16:03 By Ionut Alexandru BALTARIU Stream-jacking attacks have gained significant traction on large streaming services in recent months, with cybercriminals targeting high-profile accounts (with a large follower count) to send their fraudulent ‘messages’ across to the masses. Starting from the

Fragments of Cross-Platform Backdoor Hint at Larger Mac OS Attack 14/09/2023 at 11:02 By Andrei LAPUSNEANU During routine detection maintenance, our Mac researchers stumbled upon a small set of files with backdoor capabilities that seem to form part of a more complex malware toolkit. The following analysis is incomplete, as we are trying to identify