Trend Micro researchers have revealed how the port-forwarding feature within GitHub Codespaces is a vulnerability which cybercriminals could abuse to deliver and host malware. The researchers found that threat actors could abuse the public sharing of forward ports to create a malware server. All cybercriminals need to do to avoid detection and suspicion is use a legitimate GitHub account. As of yet, the security vulnerability hasn’t been exploited in the wild.
Search Results for: malware
The Zoom video conferencing application has been modified to deliver the IcedID malware to victims, according to a report issued by Cyble Research and Intelligence Labs (CRIL). IcedID, or “BokBot,” is designed to steal user banking credentials, primarily targeting businesses. Though IcedID serves mainly as a loader for other malware strains, it’s a lethal malware capable of avoiding detection from scanners.
Cybercrime groups are now leveraging Google Ads and search engines to get users to download malicious software. Dubbed “MasquerAds”, the latest campaign mimics AnyDesk, Dashlane, Grammarly, Malwarebytes, Microsoft Visual Studio, MSI Afterburner, Slack, Zoom, Audacity, OBS, Libre Office, Teamviewer, Thunderbird, Brave, and other applications.