Karsten Hahn3d ago

I wrote an article about SugarSMP Minecraft scams, Spark stealer, extortion and hacked accounts.

After a brief contact to the threat actor, we talked to two victims and followed the trail.

Analysis in collaboration with @rifteyy
#GDATATechblog #GDATA
https://blog.gdatasoftware.com/2026/03/38390-minecraft-mod-sugarsmp-malware

Minecraft: SugarSMP's Dark Tale of Scams, Malware & Extortion

Some Minecraft players were looking for safe haven away from griefers, but found an elaborate web of malware, deception and extortion.

Show threadmartinaklinkowskiFeb 1
1️⃣1️⃣ Virenschutz: mein Norton läuft demnächst aus (schon länger gekündigt) und wird durch #GData ersetzt.
NERDS.xyz – Real Tech News for Real NerdsJan 14

AV Comparatives crowns the best antivirus tools of 2025

https://fed.brid.gy/r/https://nerds.xyz/2026/01/av-comparatives-2025-antivirus-winners/

Karsten HahnDec 15

New blog: Browser Hijacking techniques -- when malware has different preferences than you

https://www.gdatasoftware.com/blog/2025/11/38298-learning-about-browser-hijacking

#GDATA #GDATATechblog #BrowserHijacking

Browser Hijacking: Three Technique Studies

If you are searching for technical information on how browser hijacking works, there does not seem to be much out there apart from generic removal instructions. This might be an educational gap we should try and close.

Karsten HahnSep 22

Steam game BlockBlasters downloads malware
written by Arvin Tan

#GDATATechblog @GDATA #GDATA
https://www.gdatasoftware.com/blog/2025/09/38265-steam-blockblasters-game-downloads-malware

Infected Steam game downloads malware disguised as patch

A 2D platformer game called BlockBlasters has recently started showing signs of malicious activity after a patch release on August 30. While the user is playing the game, various bits of information are lifted from the PC the game is running on - including crypto wallet data. Hundreds of users are potentially affected.

detektor.fm Sep 9, 2025

(sponsored) Das Wissen einer Branche – aufbereitet in einem opulenten Bericht. Die Zahlenreports sind seit 25 Jahren Teil des Portfolios bei brand eins Corporate Services. Wie genau funktioniert Corporate Publishing? Darum geht’s in dieser Folge am Beispiel des IT-Magazins „Cybersicherheit in Zahlen“, einer Kooperation von G DATA, brand eins und Statista.

#BrandEins #BrandEinsCorporateServices #CorporatePublishing #Cybersicherheit #GData #BrandEinsPodcast

https://detektor.fm/wirtschaft/brand-eins-podcast-brand-eins-corporate-services?utm_campaign=share_on_mastodon&utm_medium=mastodon&utm_source=fediverse

Das Gegenteil von Corporate

Die Zahlenreports sind schon lange Teil des Portfolios bei brand eins Corporate Services. Wie genau funktioniert das Corporate Publishing?

detektor.fm
Karsten HahnAug 28, 2025

Our technical deep-dive about AppSuite PDF Editor backdoor is out 📝👇

https://www.gdatasoftware.com/blog/2025/08/38257-appsuite-pdf-editor-backdoor-analysis
#GDATA #GDATATechblog #AppSuite

Backdoor in "AppSuite PDF Editor": A Detailed Technical Analysis

Some threat actors are bold enough to submit their own malware as false positive to antivirus companies and demand removal of the detection. This is exactly what happened with AppSuite PDF Editor.

Karsten HahnAug 14, 2025

🔍New Blog: JustAskJacky -- AI brings back classical trojan horse malware

https://www.gdatasoftware.com/blog/2025/08/38247-justaskjacky-ai-trojan-horse-comeback

#GDATA #GDATATechblog

JustAskJacky: AI brings back real trojan horse malware

Despite what some might make you believe, late Trojan Horses were a rare breed in the malware zoo. But thanks to AI and LLMs, they are back..

Isu 🐲Aug 11, 2025

So um die Jahrtausendwende gab es ein kommerzielles (?) Text-to-Speech-Programm namens "Logox" (von G DATA, glaube ich), das an den Massenmarkt gerichtet war. Erinnert sich noch wer daran? 😁

#texttospeech #millenium #logox #gdata

C_ristinaJul 13, 2025
Warum zeigt #GData bei einem angeblichen Virus nicht den Grund an? Also keine Details, worum es sich handelt? Ist das so üblich?