Topic: seo poisoning
-
Gootloader Malware Returns With New Evasion Tactics
The Gootloader malware has returned with enhanced SEO poisoning tactics, using fake legal document websites to trick users into downloading malicious .js files that deploy additional malware like Cobalt Strike and backdoors. New evasion techniques include a custom web font that disguises filename...
Read More » -
Atomic Stealer: How This Potent Mac Malware Infects Your System
A sophisticated malware campaign uses fraudulent search engine ads to impersonate popular software and targets Mac users with the Atomic Stealer information-stealing program. LastPass confirmed it was a prime target, with attackers using deceptive ads to direct users to counterfeit GitHub pages t...
Read More » -
Microsoft Nukes 200+ Fake Certificates in Teams Malware Attack
Microsoft revoked over 200 fraudulent certificates used by cybercriminals to distribute malware via fake Microsoft Teams installation files, a campaign linked to the Vanilla Tempest group. The attackers employed SEO poisoning and malvertising to trick users into downloading malicious files, which...
Read More » -
Microsoft cancels 200 certificates for malicious Teams installers
Microsoft revoked 200 software-signing certificates to neutralize the Vanilla Tempest ransomware group's ability to distribute malware disguised as the Microsoft Teams installer, protecting users from cyberattacks. Vanilla Tempest used deceptive domains and SEO poisoning to trick users into downl...
Read More » -
Microsoft Thwarts Ransomware Attack on Teams Users
Microsoft invalidated over 200 fraudulent digital certificates to disrupt a ransomware campaign that used fake Teams installers, blocking the Rhysida ransomware's distribution network in early October. The attack, orchestrated by the Vanilla Tempest group, involved malvertising and spoofed websit...
Read More »