How to Spot 'Living Off the Land' Computer Attacks

As users (and detection tools) have gotten better at identifying the signs of a malware infection and savvy enough to avoid them in the first place, some cybercriminals have changed tactics.

FBI seeks victims of Steam games used to spread malware

The FBI is asking gamers who installed Steam titles containing malware to provide information as part of an ongoing ...
Decrypt

FBI Investigating After Malware Found Lurking in Steam PC Games

Feds are looking to hear from victims after several games on Valve’s Steam platform were found to be distributing malicious software.
TechSpot

New "Zombie ZIP" attack can evade most antivirus scanners

Is this a virus?: Classic ZIP bombs and other archive-based tricks have long given cybercriminals a convenient way to sneak malware onto unsuspecting systems. A newly documented technique claims to go ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
PCMag

Did a Steam Game Give Your PC Malware? The FBI Wants to Know

In a rare move, the FBI has published an alert 'seeking victim information' related to a hacker exploiting Valve's Steam ...
Cybernews

How Oscar season becomes prime time for malware attacks

Illegally downloading the latest Oscar contender might feel like beating the system. But when the malware kicks in, as Morpheus once said, “Welcome to the real world.” Lurking in the shadows lies a ...

AI-generated Slopoly malware used in Interlock ransomware attack

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...
The Hacker News

Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets

Six Android malware families discovered targeting banking apps and crypto wallets, exploiting accessibility features to steal funds and data.
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...
DataBreachToday

Bing AI Pushed Malware Posing as OpenClaw

Fake OpenClaw installers on GitHub deployed credential stealers and a proxy tool linked to the Black Basta ransomware group, while Bing's AI served the malicious ...
Security Boulevard

Middle East Conflict Fuels Opportunistic Cyber Attacks

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...