Bleeping Computer

QBot malware abuses Windows WordPad EXE to infect devices

The QBot malware operation has started to abuse a DLL hijacking flaw in the Windows 10 WordPad program to infect computers, using the legitimate program to evade detection by security software. A DLL ...
PCMag on MSN

Fake version of popular archiver site is distributing malware, taking over PCs

Watch what you type. The real 7-Zip uses a .org domain, but a .com version is distributing a Trojan, according to antivirus ...
Bleeping Computer

QBot phishing abuses Windows Control Panel EXE to infect devices

Phishing emails distributing the QBot malware are using a DLL hijacking flaw in the Windows 10 Control Panel to infect computers, likely as an attempt to evade detection by security software. DLL ...
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery ...
WinBuzzer

Fake 7-Zip Downloads Turn Home PCs Into Malicious Proxy Nodes

Researchers have uncovered a malware campaign targeting 7-Zip users through fake domain 7zip.com, turning infected computers into proxy nodes.
CoinTelegraph

StilachiRAT malware: How it targets crypto wallets on Chrome

In November 2024, Microsoft Incident Response researchers uncovered a remote access Trojan (RAT) called StilachiRAT. This discovery highlights the evolving nature of cyber threats, with the malware ...
Infosecurity-magazine.com

Malware Analysis Reveals Sophisticated RAT With Corrupted Headers

A newly uncovered remote access Trojan (RAT) that operated for weeks on a compromised system has been discovered and analyzed by security researchers. According to Fortinet’s FortiGuard Incident ...