🚀 Medial Secures Investment on Shark Tank India - Fueling the Future of Professional Social Networking. 🔥

Startup Showcase

Premium Content

Try our Valuation Calculator →

News on Medial

Google Cloud Run is being targeted in a major new malware campaign — and the threats are on the rise

Techradar

Techradar · 1y ago

Google Cloud Run is being targeted in a major new malware campaign — and the threats are on the rise

Hackers are increasingly utilizing Google Cloud Run to deploy their malware and scam campaigns, effectively bypassing security solutions. Google Cloud Run is a service that allows developers to build and deploy websites and web services on a managed platform. Since September 2023, security experts have observed an increase in malicious emails using Google Cloud Run to distribute banking trojans like Astaroth, Mekotio, and Ousaban. Most victims are located in Latin American countries, with Brazil being a prominent source of these emails. Multiple threat actors may be collaborating on a single Google Cloud Run instance, delivering multiple malware families simultaneously. Astaroth is especially dangerous, targeting over 300 institutions across 15 Latin American countries.

Related News

Nearly 1 million Windows devices targeted in advanced “malvertising” spree

Arstechnica

Arstechnica · 5m ago

Nearly 1 million Windows devices targeted in advanced “malvertising” spree

Nearly 1 million Windows devices were attacked in a sophisticated malvertising campaign that started in December. The attackers used staged malware to steal login credentials, cryptocurrency, and other data. The campaign involved malicious ads, primarily hosted on GitHub, Discord, and Dropbox. The malware targeted browsers and cloud services for sensitive information, including files associated with cryptocurrency wallets. Microsoft has updated Defender to detect related threats, advising users to stay vigilant against such attacks.

Fake Google ads are trying to trick users into downloading nasty malware

Techradar

Techradar · 1y ago

Fake Google ads are trying to trick users into downloading nasty malware

Hackers are using Google Ads accounts from Nigeria to target consumers in China who are searching for banned communication apps. The malicious ads redirect users to fake download sites for apps like Telegram and WhatsApp, infecting them with PlugX and Gh0st RAT malware. The campaign seems to be an extension of a previous attack called FakeAPP, which primarily targeted Hong Kong users. To combat such threats, it is recommended to create strong passwords, enable multi-factor authentication, and exercise caution when browsing websites. Source: TechRadar

New Linux malware found targeting mobile networks across the world

Techradar

Techradar · 1y ago

New Linux malware found targeting mobile networks across the world

Telecom operators worldwide are being targeted in a sophisticated espionage campaign by threat actors known as LightBasin or UNC1945. The attackers are utilizing a backdoor called GTPDOOR to gain access to a telecom's core network and gather sensitive information. The backdoor has primarily targeted the telecommunications sector and has largely gone undetected by antivirus software. Businesses are advised to remain vigilant for unusual network activities, unexpected processes, and indicators of malware to defend against such attacks.

Indians faced over 10 million internet-borne cyberthreats during April-June quarter: report

Economic Times

Economic Times · 11m ago

Indians faced over 10 million internet-borne cyberthreats during April-June quarter: report

Indian computer users have experienced a significant rise in cyber threats, with over 10 million internet-borne threats and 14 million local incidents reported in the April-June quarter. A report by cybersecurity firm Kaspersky Security Network revealed that 20% of Indian users were targeted by web-borne threats during this period. The attackers primarily exploited vulnerabilities in web browsers and their plugins, infecting user systems after visiting infected websites. The report also highlighted the prevalence of file-less malware, phishing, baiting, and pretexting as common cyberattack methods. The use of artificial intelligence by cybercriminals to exploit user vulnerabilities was also noted.

Watch out - these fake websites advertising Google Meet, Skype, and Zoom are just spreading malware

Techradar

Techradar · 1y ago

Watch out - these fake websites advertising Google Meet, Skype, and Zoom are just spreading malware

Cybersecurity researchers have discovered a new campaign in which hackers are creating fake websites that closely resemble those of major tech brands like Google, Skype, and Zoom. By using a method known as "typosquatting," the attackers trick users into thinking they're visiting legitimate sites and then prompt them to download malware. The campaign, which has been active since December 2023, targets Russian consumers and distributes various remote access trojans (RATs), including Spynote RAT for Android and NjRAT and DCRat for Windows systems. These RATs can be used for malicious activities such as stealing information and logging keystrokes.

Nearly 1 million Windows devices targeted in advanced “malvertising” spree

Arstechnica

Arstechnica · 5m ago

Nearly 1 million Windows devices targeted in advanced “malvertising” spree

A sophisticated "malvertising" campaign targeted nearly 1 million Windows devices, stealing login credentials, cryptocurrency, and more. The attackers used a four-stage malware process, starting with infection via malicious ad links leading to GitHub-hosted files. The malware disabled detection apps, connected to command servers, and exfiltrated data like browser histories and login details. Microsoft suspects unauthorized streaming sites hosted the ads, and now detects the attack's files. Users are advised to take preventive measures.

Google’s threat team confirms Iran targeting Trump, Biden, and Harris campaigns

Arstechnica

Arstechnica · 1y ago

Google’s threat team confirms Iran targeting Trump, Biden, and Harris campaigns

Google has confirmed that Iranian-backed hackers have targeted Google accounts associated with US presidential campaigns and intensified attacks on Israeli targets. The hackers, known as APT42 and associated with Iran's Islamic Revolutionary Guard Corps, use various techniques such as malware, phishing pages, and redirects to gain access to cloud-based accounts like Google, Dropbox, and OneDrive. They have been targeting high-profile individuals in Israel and the US, including political consultants and former government officials. Both parties are considered equal targets, and experts suggest that the threat from Iranian hackers should be taken as seriously as the threat from Russian hackers.

DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers

TechCrunch · 7m ago

DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers

U.S. authorities dismantled a Chinese state-backed hacking group, Twill Typhoon, that had infiltrated millions of computers to conduct espionage. The FBI, along with French authorities and cybersecurity firm Sekoia, successfully deleted the PlugX malware from thousands of U.S. systems. This malware, used for data theft since 2012, targeted governments and private sectors worldwide. The operation is part of ongoing efforts to combat foreign cyber threats, particularly from Chinese-backed hackers.

North Korea-backed hackers target security researchers with 0-day

Arstechnica

Arstechnica · 1y ago

North Korea-backed hackers target security researchers with 0-day

North Korea-backed hackers are once again targeting security researchers, using a zero-day exploit and related malware to infiltrate computers used for sensitive cybersecurity investigations. Google researchers discovered the unfixed zero-day vulnerability in a popular software package used by the targeted researchers. The hackers established working relationships with the researchers before exploiting the vulnerability using a malicious file. This campaign closely matches a previous one definitively tied to North Korean government-backed hackers. The hackers pose as security researchers and develop relationships on social media before sharing Trojanized exploits or analysis tools with their targets.

Centre Asks X To Take Steps To Curb Hoax Flight Bomb Threats

Inc42 · 10m ago

Centre Asks X To Take Steps To Curb Hoax Flight Bomb Threats

The Indian government has requested the micro-blogging platform that it takes action against the spread of false information and rumors on its platform. They have specifically asked for the use of artificial intelligence to detect and block accounts spreading malicious messages. This comes as a response to the rise in bomb threats being targeted at Indian airlines.

Trackers

Active Indian VC’s

OG Capital Email

With a hands-on approach, OG Capital aims to invest in over 20 promising...

Accel Partners Email

Early and growth-stage investments in disruptive technology companies with...

Early-stage venture capital firm investing in technology startups in India. Focus on...

Access All Trackers

Startup Showcase Winners

June 2025

Helping your parents when you are miles away

The Pit Stop Your Cravings Deserve

The next generation E-commerce platform

Enter Ongoing Startup Showcase

Top Users

Trending News on Medial

Just Months After Promotion, Open ...

Exclusive: Robotics startup Miko ...

“Your Phone Is Outdated”: Sam Alt ...

Download the medial app to read full posts, comements and news.