by Ophtek, LLC | Nov 19, 2024 | Black Hat, Hackers, Hacktivists, malware, Ophtek, Phishing, security, White Hat
The headlines generated by cybersecurity attacks always focus on the damage caused by hackers, but who exactly are the hackers and why do they hack? Financial losses associated with cybercrime hit a mighty $12.5 billion in 2023, so it’s clear to see that hackers have...
by Ophtek, LLC | Oct 22, 2024 | contact_sender, malware, Ophtek, Palo Alto Networks, Phishing, RomCom, SnipBot, spam_filters, Suspicious links, verify sources
A new malware attack has been discovered which uses the SnipBot malware to dig deep into the victim’s network and harvest data. SnipBot is a variant of the RomCom malware, which has previously been used for data harvesting and financially motivated attacks such as the...
by Ophtek, LLC | Oct 1, 2024 | anti-malware_software, Brute_Ratel, Havoc, macros, malware, MS_Office, Ophtek, PhantomCore, Phishing, security_updates
Macros make our lives easier when it comes to repetitive tasks on PCs, but they’re also a potential route for malware to take advantage of. The most up to date version of MS Office prevents macros from running automatically, and this is because macros have long been...
by Ophtek, LLC | Aug 6, 2024 | anti-malware tools, anti-virus software, Cluster Bombs, compressed cabinet files, KrakenLabs, malicious emails, malware, Ophtek, Phishing, software updates, Unfurling Hemlock, WEXTRACT.EXE
A malware infection is always bad news but imagine being infected with multiple strains at once. Welcome to the new threat of malware cluster bombs. Researchers at the cybersecurity firm KrakenLabs have revealed the dangers of a new malware technique launched by...
by Ophtek, LLC | Mar 26, 2024 | ClearFake, Hijacked websites, Malicious traffic distribution system, malvertising, malware, Ophtek, Phishing, SocGholish, TDS, VixTrio
Threat actors have compromised 70,000 previously legitimate websites and created a powerful network capable of distributing malware. Named VexTrio, this network of compromised websites appears to have started in 2017, but it’s only more recently that details around...
by Ophtek, LLC | Mar 12, 2024 | backdoor malware, ColdRiver, cybersecurity, Ophtek, Phishing, Proton-decryptor.exe, Russian Hackers, Spica
Russian hackers are using a fake PDF decryption tool to trick innocent PC users into downloading Spica, a new strain of malware. Discovered by Google’s Threat Analysis Group (TAG), Spica is a backdoor malware which has not been identified previously. It’s believed...
