by Ophtek, LLC | Mar 26, 2024 | ClearFake, Hijacked websites, Malicious traffic distribution system, malvertising, malware, Ophtek, Phishing, SocGholish, TDS, VixTrio
Threat actors have compromised 70,000 previously legitimate websites and created a powerful network capable of distributing malware. Named VexTrio, this network of compromised websites appears to have started in 2017, but it’s only more recently that details around...
by Ophtek, LLC | Mar 19, 2024 | authentication, Hackers, HeadCrab, malware, Ophtek, Redis Servers, runtime monitoring, security scans
A new strain of malware, which contains several different attack methods and is considered a severe threat, has been discovered and named HeadCrab. The attack focuses its efforts on Redis servers, an open source, in-memory data structure store. In simpler terms, Redis...
by Ophtek, LLC | Mar 12, 2024 | backdoor malware, ColdRiver, cybersecurity, Ophtek, Phishing, Proton-decryptor.exe, Russian Hackers, Spica
Russian hackers are using a fake PDF decryption tool to trick innocent PC users into downloading Spica, a new strain of malware. Discovered by Google’s Threat Analysis Group (TAG), Spica is a backdoor malware which has not been identified previously. It’s believed...
by Ophtek, LLC | Mar 5, 2024 | GitHub, malicious code, malware, Open Source Malware, Ophtek
GitHub is a wildly popular website for developers to create, share, and store their code, but it’s also being increasingly used to spread malware. Launched in 2008, GitHub quickly became the number one destination for developers. Packed full of features – such...
by Ophtek, LLC | Feb 27, 2024 | anti-malware tools, Bandook Malware, network activity, Ophtek, Phishing Email, Remote Access Trojan
A new variant of the Bandook malware has been discovered which targets Windows PCs, so it’s crucial you know how to deal with it. From its earliest detection in 2007, Bandook has been a capable strain of malware. Being a remote access trojan, Bandook’s main...
by Ophtek, LLC | Feb 20, 2024 | gmail, Google, Google cookies, Hackers, Hacking, multi factor authentication, Ophtek, Suspicious links, suspicious software
A recently discovered vulnerability appears to allow threat actors to hack into your Google account, even if you change your password. Given that there are 1.8 billion people actively using Gmail, it should come as no surprise that Google accounts represent a...
