Loading...
Loading...
Browse all stories on DeepNewz
VisitWhat will be identified as the primary method used by the malware to spread by the end of 2024?
Cloud services • 25%
Email phishing • 25%
Social engineering • 25%
Other • 25%
Cybersecurity reports or official announcements
Malware Hits 300,000 Browsers, Exploits Microsoft and Google Cloud Services
Aug 9, 2024, 04:12 PM
A significant malware campaign has been identified, affecting 300,000 browsers by force-installing malicious Chrome extensions and patching DLLs. The malware utilizes PowerShell payloads to modify web browser shortcut links, ensuring the malicious extensions load and disabling the browser's automatic update mechanism. This tactic prevents Chrome's built-in protections from mitigating the threat. The malware is reportedly using cloud storage services from Microsoft and Google to store and spread the malicious software, highlighting a concerning vulnerability in these platforms.
View original story
Phishing emails • 25%
Malicious websites • 25%
Compromised software updates • 25%
Other • 25%
Phishing • 25%
RDP exploits • 25%
RMM tools • 25%
Other • 25%
Phishing emails • 25%
Compromised software downloads • 25%
Malicious websites • 25%
Other • 25%
Phishing • 25%
Zero-day exploits • 25%
Malware • 25%
Other • 25%
Phishing • 25%
Direct network attack • 25%
Malware installation • 25%
Other • 25%
Nearest Neighbor Attack • 25%
Phishing • 25%
Malware • 25%
Other • 25%
Phishing attacks • 25%
Direct server exploitation • 25%
Malware distribution • 25%
Other • 25%
Phishing • 25%
Password spraying • 25%
Exploiting Git configurations • 25%
Malware • 25%
Router vulnerabilities • 25%
Camera vulnerabilities • 25%
Other internet-connected devices • 25%
Unknown/Multiple methods • 25%
Energy sector • 25%
Financial sector • 25%
Transportation sector • 25%
Other • 25%
American think tanks • 25%
Russian journalists • 25%
Human rights groups • 25%
Former US Ambassador to Ukraine • 25%
PureHVNC • 25%
Infostealer • 25%
Ransomware • 25%
Other • 25%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
Other • 25%
Indictment of individuals involved • 25%
New cybersecurity regulations • 25%
No significant action • 25%