Malware attacks strip Roblox developers of entire games 2026-06-18 at 15:41 By Sinisa Markovic Hackers who once focused on stealing valuable Roblox items are now taking over entire games. Although Roblox operates the service, users can create and publish their own games on it. Successful games can generate substantial revenue through in-game purchases. Some developers […]
Malware attacks strip Roblox developers of entire games Read More »
Hackers hijacked CPUID downloads, served STX RAT to victims 2026-04-13 at 16:08 By Zeljka Zorz If you tried to download software from CPUID’s website late last week, you might have downloaded malware instead. “Investigations are still ongoing, but it appears that a secondary feature (basically a side API) was compromised for approximately six hours between
Hackers hijacked CPUID downloads, served STX RAT to victims Read More »
Notepad++ supply chain attack: Researchers reveal details, IoCs, targets 2026-02-03 at 15:34 By Zeljka Zorz Rapid7 researchers have attributed the recent hijacking of the Notepad++ update mechanism to Lotus Blossom (aka Billbug), a Chinese state-sponsored group known for targeting organizations in Southeast Asia for espionage purposes. On Wednesday, Kaspersky researchers shared the insights they’ve gleaned
Notepad++ supply chain attack: Researchers reveal details, IoCs, targets Read More »
Budding infosec pros and aspiring cyber crooks targeted with fake PoC exploits 2025-12-23 at 14:47 By Zeljka Zorz Malware peddlers are targeting infosec enthusiasts, budding security professionals, and aspiring hackers with the Webrat malware, masquerading the threat as proof-of-concept (PoC) exploits for known vulnerabilities. Delivering the malware The recently uncovered Webrat can steal data from
Budding infosec pros and aspiring cyber crooks targeted with fake PoC exploits Read More »
Italian-made spyware Dante linked to Chrome zero-day exploitation campaign 2025-10-28 at 16:28 By Zeljka Zorz CVE-2025-2783, a Chrome zero-day vulnerability that was detected being exploited in March 2025 and was subsequently fixed by Google, was used by unknown attackers to deliver LeetAgent, suspected commercial spyware. An analysis of the malware’s code and the campaign’s infrastructure
Italian-made spyware Dante linked to Chrome zero-day exploitation campaign Read More »
Infostealer crackdown: Operation Secure takes down 20,000 malicious IPs and domains 2025-06-11 at 20:46 By Help Net Security More than 20,000 malicious IP addresses and domains used by information-stealing malware were taken down during an international cybercrime crackdown led by INTERPOL. Called Operation Secure, the effort ran from January to April 2025 and involved law
Infostealer crackdown: Operation Secure takes down 20,000 malicious IPs and domains Read More »
Beware fake AutoCAD, SketchUp sites dropping malware 2025-04-03 at 09:47 By Help Net Security Malware peddlers are saddling users with the TookPS downloader and the Lapmon and TeviRat backdoors via malicious sites that mimic official ones and ostensibly offer legitimate software for download, Kaspersky researchers have warned. Malicious websites (Source: Kaspersky) The list of impersonated
Beware fake AutoCAD, SketchUp sites dropping malware Read More »
Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) 2025-03-28 at 12:57 By Zeljka Zorz Google’s fixing of CVE-2025-2783, a Chrome zero-day vulnerability exploited by state-sponsored attackers, has spurred Firefox developers to check whether the browser might have a similar flaw – and they found it. There’s currently no indication that the Firefox bug (CVE-2025-2857)
Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) Read More »
Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) 2025-03-26 at 13:08 By Zeljka Zorz Google is in the process of rolling out Chrome v134.0.6998.178 to Windows users to fix CVE-2025-2783, a zero-day vulnerability that allowed attackers to to bypass Chrome sandbox protections. The vulnerability was flagged by Kaspersky researchers, who discovered it being exploited by
Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) Read More »
Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky 2025-03-26 at 00:38 By Ryan Naraine The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks in Russian. The post Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky appeared first on SecurityWeek. This article is an excerpt from
Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky Read More »
Hundreds of GitHub repos served up malware for years 2025-02-26 at 13:13 By Zeljka Zorz Kaspersky researchers have unearthed an extensive and long-running malware delivery campaign that exploited users’ propensity for downloading code from GitHub and using it without first verifying whether it’s malicious. “Over the course of the GitVenom campaign, the threat actors behind
Hundreds of GitHub repos served up malware for years Read More »
Kaspersky Banned on Australian Government Systems 2025-02-24 at 15:01 By Eduard Kovacs Australian government entities have been banned from using products and services of Russian cybersecurity company Kaspersky. The post Kaspersky Banned on Australian Government Systems appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Kaspersky Banned on Australian Government Systems Read More »
Crypto-stealing iOS, Android malware found on App Store, Google Play 2025-02-05 at 13:25 By Zeljka Zorz A number of iOS and Android apps on Apple’s and Google’s official app stores contain a software development kit (SDK) that allows them to exfiltrate cryptowallets’ seed recovery phrases, Kaspersky researchers have found. “The infected apps in Google Play
Crypto-stealing iOS, Android malware found on App Store, Google Play Read More »
Exploited: Cisco, SharePoint, Chrome vulnerabilities 2024-10-25 at 13:33 By Zeljka Zorz Threat actors have been leveraging zero and n-day vulnerabilities in Cisco security appliances (CVE-2024-20481), Microsoft Sharepoint (CVE-2024-38094), and Google’s Chrome browser (CVE-2024-4947). CVE-2024-20481 (Cisco ASA/FTD) In the past few days, Cisco has released fixes for a slew of vulnerabilities affecting the software powering its
Exploited: Cisco, SharePoint, Chrome vulnerabilities Read More »
Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete 2024-09-27 at 13:31 By Ionut Arghire Users continue to flame Kaspersky and Pango Group as the automatic, forced transition to UltraAV gradually progresses. The post Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete appeared first on SecurityWeek. This article
Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete Read More »
US-based Kaspersky users startled by unexpected UltraAV installation 2024-09-24 at 15:46 By Zeljka Zorz A poorly executed “handover” of US-based Kaspersky customers has led some users to panic when software named UltraAV popped up on their computers without any action on their part. What happened? Earlier this year, for national security reasons, the US Department
US-based Kaspersky users startled by unexpected UltraAV installation Read More »
Users Quick to Remove UltraAV After Silent Transition From Kaspersky Antivirus 2024-09-24 at 14:01 By Ionut Arghire Many US users are voicing concerns over the silent, forced transition from Kaspersky’s security products to UltraAV. The post Users Quick to Remove UltraAV After Silent Transition From Kaspersky Antivirus appeared first on SecurityWeek. This article is an
Users Quick to Remove UltraAV After Silent Transition From Kaspersky Antivirus Read More »
One Million US Kaspersky Customers Transferred to Pango’s UltraAV 2024-09-09 at 13:31 By Eduard Kovacs Kaspersky’s customers in the US are being acquired by cybersecurity firm Pango and will be offered UltraAV antimalware software. The post One Million US Kaspersky Customers Transferred to Pango’s UltraAV appeared first on SecurityWeek. This article is an excerpt from
One Million US Kaspersky Customers Transferred to Pango’s UltraAV Read More »
Kaspersky Leaving US Following Government Ban 2024-07-16 at 13:31 By Eduard Kovacs Kaspersky is shutting down operations in the US and laying off employees following the recent Commerce Department ban. The post Kaspersky Leaving US Following Government Ban appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Kaspersky Leaving US Following Government Ban Read More »
Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government 2024-07-08 at 19:01 By Ionut Arghire Kaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities. The post Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government Read More »