Hacker NewsMay 9, 2025

Doge software engineer's computer infected by info-stealing malware

https://arstechnica.com/security/2025/05/doge-software-engineers-computer-infected-by-info-stealing-malware/

#HackerNews #Doge #Malware #InfoStealing #Cybersecurity #SoftwareEngineer

DOGE software engineer’s computer infected by info-stealing malware

The presence of credentials in leaked “stealer logs” indicates his device was infected.

Ars Technica
Kevin Karhan Dec 29, 2024

@gnemmi @methuselah @daniel whichever they are, #NameThemBlameThem would be essential for #ITsec, #InfoSec, #OpSec & #ComSec - alongside the messages of them saying they don't give a shit.

  • Anything else is undue leniency and accomplicity, as I'd nit he surprised if such "#Abandonware" is part of a campaign to do #InfoStealing or attack the Comms of people deemed "hostile" by the attackers, which may or may not be state-sponsored or acting under duress...

#Trnapsarency is essentual here!!!

Mix Mistress Alice💄Nov 4, 2024

"The notorious FIN7 threat group is combining artificial intelligence (AI) with social engineering in an aggressive, adult-themed threat campaign that dangles lures for access to technology that can "deepfake" nude photos — all to fool people into installing infostealing malware.

The powerful Russian financial cybercrime group has created at least seven websites that advertise for what's called a "DeepNude Generator," which promises to use deepfake technology transform any photo into a nude representation of the person pictured, according to new research from the threat hunters at Silent Push.

People can either download the generator via the site or sign up for a "free trial," demonstrating the sophistication of the scam. But instead of receiving the tool, they end up downloading malicious payloads such as the stealers Lumma and Redline, which can be used to deliver further malware such as ransomware"—Elizabeth Montalbano >

https://www.darkreading.com/endpoint-security/ai-nude-photo-generator-delivers-infostealers

#technews #security #deepfakes #nudifying #ransomware #malware #nudify #undressing #software #cybercrime #technology #news #explicitcontent #theft #infostealing #cybersecurity

AI 'Nude Photo Generator' Delivers Infostealers, Not Images

The FIN7 group is using sophisticated malware campaign that spans numerous websites, to lure people with a deepfake tool promising to create nudes out of photos.

DarkOperator 🚀Jan 20, 2023
#Fake #Bank Apps Target Loan Applications With #Infostealing #RAT
https://thecyberexpress.com/fake-bank-app-loan-applicants-infostealing-rat/
Fake Bank Apps Target Loan Applicants With Infostealing RAT

The attackers use duplicated versions of legitimate websites to trick individuals into visiting sites that infect their devices with infostealing RAT.

The Cyber Express
marweJan 19, 2023

#Infostealing via sponsored ads, this easily hits most people without adblockers in the web:

https://www.bleepingcomputer.com/news/security/hackers-push-malware-via-google-search-ads-for-vlc-7-zip-ccleaner/

Stay away from google (maybe other #searchengines too, if they bombard you with ads).
Try privacy preserving https://search.brave.com/ if you have not yet (has its own index).

Hackers push malware via Google search ads for VLC, 7-Zip, CCleaner

Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results.

BleepingComputer
ITSEC NewsJan 31, 2020
Advanced Obfuscation Marks Widespread Info-Stealing Campaign - Agent Tesla and LokiBot are common payloads in the botnet-driven spam effort. more: https://threatpost.com/advanced-obfuscation-info-stealing-campaign/152468/ #advancedobfuscation #maliciousemails #malwareresearch #infostealing #spamcampaign #agenttesla #lastline #malware #privacy #lokibot #rtffile #sweed
Advanced Obfuscation Marks Widespread Info-Stealing Campaign

Agent Tesla and LokiBot are common payloads in the botnet-driven spam effort.

Threatpost - English - Global - threatpost.com