Word files with macros are being used by a new strand of malware to download a PowerShell script from GitHub. a legitimate image file is further downloaded by this PowerShell script from the image hosting service, Imgur to decode ... Read more
To prepare malicious documents, threat actors are increasingly using VBA code. As observed by researchers, threat actors recently have adopted the trend of using a VBA Purging technique, which involves the use of VBA source code only within Offi... Read more
The criminal outfit known for its cryptomining operations, Team TNT has enhanced its arsenal with new tools with sharpened capabilities. It has been observed that a new bot named TNTbotinger has been used by the threat group in their recent atta... Read more
The Gitpaste-12 worm that disseminates through GitHub and uses GitHub and Pastebin to host malicious payload has been active again with new exploits. The worm was earlier found to be exploiting 12 vulnerabilities, has upgraded its count, and has... Read more
Fake Windows and Android installers for the Cyberpunk 2077 game are being distributed by a threat actor that is further installing ransomware called CoderWare. In order to trick users into downloading and installing the malware, threat actors ar... Read more