New Phishing Apps Discovered on Google Play Store
New Phishing Apps Discovered on Google Play Store
  • Alert & Advisory
  • January 30, 2023

Several phishing apps have recently been discovered on the Google Play Store. These apps can be games or investment services; however, they are designed to steal sensitive user information. The apps have been downloaded 450, 000 times in total.

Phishing Emails with OneNote Attachments Used to Disseminate RATs
Phishing Emails with OneNote Attachments Used to Disseminate RATs
  • Alert & Advisory
  • January 24, 2023

A new method of delivering Remote Access Trojans (RATs) has been discovered using Microsoft OneNote attachments (these use ‘.one’ as an extension). Since the ubiquitous use of malicious Word or Excel documents is now easily identified by users, threat actors are resorting to other means in order to fool unsuspecting victims into downloading malicious files. Microsoft OneNote is a free note-taking software that can either be downloaded online or is included as part of Microsoft’s Office suite of applications.

Increasing Cases of Wiperware Infection
Increasing Cases of Wiperware Infection
  • Alert & Advisory
  • January 19, 2023

There is heightened risk of getting infected with wiper malware (or wiperware) which often masquerade as ransomware, but are arguably more lethal as they erase or corrupt data permanently – providing no means of recovering the affected data. Increased prevalence of wiperware is likely due to its use in the ongoing war in Eastern Europe; however, there have been noteworthy incidences of its use going back a decade. Threat actors who deploy wiperware do so without expectation of financial gain – which is probably why it has taken the backseat to its cousin, ransomware, over the years.

Legacy Windows Operating Systems to No Longer Get Support from January 2023
Legacy Windows Operating Systems to No Longer Get Support from January 2023
  • Alert & Advisory
  • January 9, 2023

This is a reminder that Microsoft will no longer support Windows 8.1 as from January 10, 2023. The Extended Security Update (ESU) programme for Windows 7 Professional and Enterprise versions will also end January 10, 2023 – meaning these versions of Windows 7 will no longer be receiving security updates to patch critical vulnerabilities.

Multiple Vulnerabilities in EDRs and Anti-Virus Software Exploited To Turn Them into Data Wipers
Multiple Vulnerabilities in EDRs and Anti-Virus Software Exploited To Turn Them into Data Wipers
  • Alert & Advisory
  • December 19, 2022

SafeBreach researchers discovered a number of zero-day vulnerabilities in various Endpoint Detection and Response (EDR) and Anti-virus solutions. These flaws can be exploited to turn millions of such solutions in use around the world into data wipers capable of deleting any file on a device and causing it to fail to boot. This wiper runs as an unprivileged user but has the ability to wipe almost any file on a system, including system files, and render a computer unbootable. It does all that without implementing code that touches the target files, making it fully undetectable.

Related Articles