Security experts have warned of an emerging new cyber threat involving fake VPN software hosted on GitHub. A report from Cyfirma outlines how malware disguises itself as a “Free VPN for PC” and lures ...

Increasing reliance on open-source repositories calls for much higher-level vigilance to counter deceptive tactics.

A new attack uses CVE-2021-41773 in Apache HTTP Server to install a cryptocurrency miner via compromised websites.

The Treasury Department alleges that Russia-based Aeza Group is selling web hosting services to cybercriminals, who use it to spread malware and sell drugs on the dark web.

Meanwhile, ESET contributed to major disruption operations targeting Lumma Stealer and Danabot, two prolific malware-as-a-service threats.

ClickGrab is a dual-mode analysis platform that uses Python and PowerShell to detect and dissect malicious websites deploying fake CAPTCHA systems. PasteEater offers real-time user protection by ...

The Lumma infostealer malware operation is gradually resuming activities following a massive law enforcement operation in May ...

A new variant of the banking trojan 'Coyote' has begun abusing a Windows accessibility feature, Microsoft's UI Automation framework, to identify which banking and cryptocurrency exchange sites are ...

Hackers are exploiting Shellter’s leaked Elite license to distribute Lumma Stealer, SectopRAT, and more. This affects ...

A new malware distribution campaign leveraging public GitHub repositories as a delivery infrastructure for various malicious ...