by Ophtek, LLC | Oct 15, 2024 | banking_trojans, BBTok, Brazil, Italy, malware, Mekotio, Ophtek, phishing_email, SambaSpy
Italian PC users have become the target of SambaSpy, a new strain of malware which appears to originate from Brazil and employs phishing emails. First detected by Kaspersky in May 2024, SambaSpy currently only seems to have targeted PC users in Italy. This is unusual...
by Ophtek, LLC | Oct 8, 2024 | Amadey, antivirus software, Chrome, Google, hard_reset, hotkeys, kiosk_mode, malware, Ophtek, StealC
There’s nothing worse that a new and innovative malware approach, but that’s exactly what Google users have been exposed to. This latest attack takes advantage of Google’s kiosk mode. For those of you not familiar with kiosk mode, here’s a quick breakdown: it’s a...
by Ophtek, LLC | Oct 1, 2024 | anti-malware_software, Brute_Ratel, Havoc, macros, malware, MS_Office, Ophtek, PhantomCore, Phishing, security_updates
Macros make our lives easier when it comes to repetitive tasks on PCs, but they’re also a potential route for malware to take advantage of. The most up to date version of MS Office prevents macros from running automatically, and this is because macros have long been...
by Ophtek, LLC | Sep 24, 2024 | BYOVD, DSE, EDRKillShifter, install updates, malware, Ophtek, Russian Hackers, Sophos
The hacking collective RansomHub has unveiled a new strain of malware, one which is used to disable security software and leave PCs open to attack. Discovered by security firm Sophos, RansomHub’s new malware has been dubbed EDRKillShifter. First detected during May...
by Ophtek, LLC | Sep 10, 2024 | AMD Chip, anti malware, Antivirus, bootkit, install updates, IOActive, malware, Ophtek, Sinkclose, System Management Mode
A vulnerability has been discovered within AMD processors which has the potential to expose affected PCs to incredibly stealthy strains of malware. AMD processors are used to power computers, and this is achieved by executing instructions within software applications....
by Ophtek, LLC | Aug 27, 2024 | backdoor malware, Chinese hackers, DNS requests, ISP Hack, Malicious alternative IP address, malware, Ophtek, Poisoned Software, ReloadText, software updates, StormBamboo, System Updates, Volexity
Software updates should always enhance your PC’s efficiency, but the recent breach of an ISP has demonstrated quite the opposite. This recent compromise appears to have been exploited by StormBamboo, a collection of Chinese threat actors who have been causing digital...
