In a nutshell: In another showing of why downloading pirated software, games, movies, etc., can be riskier than it's worth, cybersecurity researchers have discovered a new information-stealing malware distributed through fake websites hosting pirated and other illegal content.
What just happened? Antivirus and anti-malware programs are supposed to be the most trusted type of software installed on a PC. Exploiting this well-known status quo, a security researcher created a data-wiping tool potentially capable of erasing all the data present on a system.
Users should uninstall the Chrome extension "SearchBlox" immediately
PSA: If you have the popular extension SearchBlox installed on Google Chrome, you should immediately uninstall it, clear your cookies, and change your passwords for Roblox and Rolimons. The extension contained a backdoor designed to steal user credentials. Other websites you may have logged into with the extension installed may also be at risk.
This'll put a smile on your face: We love hearing stories of bad actors getting their comeuppance. This one is great, though, because not only did a bunch of hacker wannabes get served (literally), several of them infected themselves with malware due to misconfiguring their own equipment.
In a nutshell: Security researchers have discovered a new malware threat designed to abuse steganography techniques. Worok appears to be a complex cyber-espionage operation whose individual stages are still in part a mystery. The operation's final target, however, has been confirmed by two security firms.
What just happened? The Emotet botnet was dead, or so researchers thought. The malicious network is now back in business with a new phishing campaign, exploiting a novel technique to push users and companies to infect themselves.
Why it matters: The US government is once again meeting with global partners to try and develop an effective strategy to fight (and win) the war against ransomware. Tech companies like Microsoft are joining as well, bringing their valuable, first-hand expertise to the table.
Why it matters: "BlackLotus" is being offered on underground forums as an all-powerful firmware rootkit, capable of surviving any removal effort and bypassing the most advanced Windows protections. If actual malware samples can prove the offer is real, of course.
The big picture: Backdoor.Stegmap is a potent backdoor hidden within a simple Windows logo image file through steganography-based encryption. Chinese cyber-criminals are working hard with new and old techniques to permanently compromise high-level government and diplomatic targets.
WTF?! Gamers looking to download cheats and cracks should beware of links in YouTube video descriptions. Hackers may have compromised the channels hosting the videos, turning them into vectors for spreading malware that can steal login credentials.