| TheWindowsClub News

Evil Extractor malware can steal data on your Windows PC

Guru@TWCN — Thu, 27 Apr 2023 05:48:20 +0000

Windows PCs are under threat by new malware named Evil Extractor. It is an all-in-one info stealer malware that has the capabilities to steal your passwords, cookies, and can bypass two-factor authentication, etc. It can even install ransomware on computers that are vulnerable without any protection. Evil Extractor malware can steal data on your Windows […]

The post Evil Extractor malware can steal data on your Windows PC appeared first on TheWindowsClub News.

Windows Toolbox from GitHub is malicious; Uninstall it ASAP!

HemantSaxena@TWCN — Sun, 17 Apr 2022 12:23:59 +0000

There’s news that a popular Windows Toolbox script used to add the Google Play Store to the Android Subsystem is infecting systems with malicious scripts. Apart from this, the script is also adding some unknown Chrome extensions and potentially other malware. Windows Toolbox executes malicious commands The incident came to light when a handful of […]

The post Windows Toolbox from GitHub is malicious; Uninstall it ASAP! appeared first on TheWindowsClub News.

Malware enters the Microsoft Store; infects over 5,000 devices already

HemantSaxena@TWCN — Fri, 25 Feb 2022 13:17:15 +0000

Reports suggest the malware has entered the Microsoft Store via some Windows UWP apps for Windows 11 and Windows 10 found in the Store. Check Point Research, a company that provides leading cyber threat intelligence to the greater intelligence community discovered, a malware, dubbed Electron Bot has infected over 5,000 active machines worldwide. The malware […]

The post Malware enters the Microsoft Store; infects over 5,000 devices already appeared first on TheWindowsClub News.

New malware DarkWatchman uses Windows Registry to evade detection

VamienMcKalin@TWCN — Mon, 20 Dec 2021 01:30:43 +0000

There is a new malware roaming the internet that is capable of using the Windows Registry to evade detection. From what we have gathered so far, this malware is JavaScript-based, and it’s also a Remote Access Trojan (RAT). Researchers from Prevailion’s Adversarial Counterintelligence Team (PACT) have decided to call this malware DarkWatchman. You see, it takes […]

The post New malware DarkWatchman uses Windows Registry to evade detection appeared first on TheWindowsClub News.

DevilsTongue malware used Browser and Windows exploits to infect computers

TanmayPatange@TWCN — Wed, 21 Jul 2021 11:30:58 +0000

According to Microsoft, an Israeli company Candiru was responsible for spreading DevilsTongue malware that compromised the security of PCs running the Windows operating system. The Redmond-based company has cracked down on SOURGUM, a private-sector offensive actor (PSOA), which according to the company, exploited two Windows 0-day vulnerabilities – CVE-2021-31979 and CVE-2021-33771. Both the vulnerabilities have […]

The post DevilsTongue malware used Browser and Windows exploits to infect computers appeared first on TheWindowsClub News.

This malware uses Word files to download PowerShell script from GitHub

TanmayPatange@TWCN — Fri, 01 Jan 2021 21:33:45 +0000

It is not exceptional for hackers to use Microsoft Word macros as the forerunners of an in-depth attack on bulk users. An unidentified group of attackers has used Microsoft Word files containing macros to download a more serious PowerShell script from GitHub. GitHub-hosted malware This PowerShell script, hosted on GitHub, surreptitiously plans a Cobalt Strike […]

The post This malware uses Word files to download PowerShell script from GitHub appeared first on TheWindowsClub News.

Microsoft discovers new malware that could infect you browser and silently inject ads into Google results

AnandKhanse@TWC — Fri, 11 Dec 2020 15:30:09 +0000

Microsoft 365 Defender Research team has released more information about a widespread malware attack injecting malicious ads to Search Engine result pages. The team has notified that this attack has been in work since May 2020 and had reached its peak during August of this year. Adrozek malware can infect Chrome, Edge, Firefox During this […]

The post Microsoft discovers new malware that could infect you browser and silently inject ads into Google results appeared first on TheWindowsClub News.

Cybercriminals can deploy malware to Windows machines using Telegram

TanmayPatange@TWCN — Sat, 24 Oct 2020 13:49:06 +0000

Cybercriminals are now able to infect Windows computers with a different type of malware that can be controlled using Telegram, a cloud-based encrypted messaging app that rivals WhatsApp. Twitter user @3xp0rtblog found T-RAT 2.0 being sold on Russian forums. T-RAT 2.0 malware infects Windows machines T-RAT 2.0 offers remote access to a Powershell or CMD […]

The post Cybercriminals can deploy malware to Windows machines using Telegram appeared first on TheWindowsClub News.

Beware! Fake Malwarebytes antivirus installer caught distributing cryptocurrency malware

TanmayPatange@TWCN — Tue, 25 Aug 2020 14:30:16 +0000

Security researchers have observed a new CyrptoJacking campaign where fake Malwarebytes installation files distribute cryptocurrency malware onto infected PCs. These coinminer programs generate cryptocurrencies such as Bitcoin, Ethereum, Monero, and others. Fake Malwarebytes Coinminer on the loose Last week, security researchers were able to detect fake Malwarebytes installations files. According to researchers, these files contained […]

The post Beware! Fake Malwarebytes antivirus installer caught distributing cryptocurrency malware appeared first on TheWindowsClub News.

FBI warns US companies about ‘Chinese’ backdoor malware stealing data

TanmayPatange@TWCN — Fri, 24 Jul 2020 15:56:48 +0000

A government-mandated value-added tax (VAT) software is silently installing a backdoor malware on the networks of the US-based companies operating in China, the US Federal Bureau of Investigation agency has issued an alert. GoldenHelper, GoldenSpy malware on the rise The backdoor poses some serious trouble and challenges since it allows the execution of unauthorized code. […]

The post FBI warns US companies about ‘Chinese’ backdoor malware stealing data appeared first on TheWindowsClub News.

The world saw 375 new cyber attacks every minute during the pandemic!

TanmayPatange@TWCN — Thu, 23 Jul 2020 16:30:47 +0000

As the world fought against the pandemic, cybercriminals tried everything they could to keep cashing in on the panic. Hackers and threat actors not only put the stressful lockdown situation to their advantage, but they also managed to evolve the scope of their attacks to cause data theft prior to encryption, extending ransomware attacks to […]

The post The world saw 375 new cyber attacks every minute during the pandemic! appeared first on TheWindowsClub News.

Windows 10 still vulnerable to malware that steals Internet banking credentials

TanmayPatange@TWCN — Sat, 18 Jul 2020 07:47:12 +0000

Windows 10 users, beware. Emotet malware is on the loose yet again, Microsoft has warned. According to the company, a massive Emotet campaign has resurfaced affecting its users after being silent for months. However, it still employs the same old tactics. It all starts with emails carrying either malicious links or modified documents with malicious […]

The post Windows 10 still vulnerable to malware that steals Internet banking credentials appeared first on TheWindowsClub News.