by Ophtek, LLC | Nov 12, 2024 | Chrome, ClickFix, DarkGate, Facebook, Google, Google Meet, Lumma Stealer, malware, Ophtek, Phishing Email
Hackers have designed fake Google Meet error pages to distribute info-stealing malware which can compromise all the data on a network. It feels as though malicious websites are springing up on a daily basis, and with 12.8 million websites infected with malware, this...
by Ophtek, LLC | Nov 5, 2024 | GitHub, online links, Ophtek, Phishing Email, Remcos RAT, Remote Access Trojan, security software
A new malware campaign, targeting finance and insurance sectors, is using infected GitHub repositories to distribute the Remcos remote access trojan (RAT). GitHub is an online platform which allows software developers to store and share code online. It’s like an...
by Ophtek, LLC | Oct 29, 2024 | backdoor malware, compromised websites, fake updates, Ophtek, pop-up prompts, WarmCookie
Cybercriminals are using fake browser updates to spread the WarmCookie backdoor malware in a new campaign targeting users in France. Browsers are a crucial component of modern business IT and are used almost continuously throughout the day. Whether its placing orders...
by Ophtek, LLC | Oct 22, 2024 | contact_sender, malware, Ophtek, Palo Alto Networks, Phishing, RomCom, SnipBot, spam_filters, Suspicious links, verify sources
A new malware attack has been discovered which uses the SnipBot malware to dig deep into the victim’s network and harvest data. SnipBot is a variant of the RomCom malware, which has previously been used for data harvesting and financially motivated attacks such as the...
by Ophtek, LLC | Oct 15, 2024 | banking_trojans, BBTok, Brazil, Italy, malware, Mekotio, Ophtek, phishing_email, SambaSpy
Italian PC users have become the target of SambaSpy, a new strain of malware which appears to originate from Brazil and employs phishing emails. First detected by Kaspersky in May 2024, SambaSpy currently only seems to have targeted PC users in Italy. This is unusual...
