Malware

Organizations and individuals have been warned by the FBI's Denver office regarding the increasing prevalence of scams that use fake online file converter sites to facilitate the spread of malware, ransomware, and other malicious payloads, CBS News reports.

Attackers, tracked under the UAC-0200 threat cluster, leveraged the Signal messaging app to deliver messages purportedly containing minutes of the meeting reports as archive files.

Attackers eventually used YouTube and Discord to promote the bogus cracked software downloader ArcanaLoader to facilitate the distribution of Arcane malware.

Despite spreading ransomware and banking trojans in its previous iterations, the latest DollyWay v3 campaign sought to target WordPress sites.

Attackers are making use of Windows shortcut (.lnk) files to dupe users into running malicious code on their systems.

The threat actor retrieves resources and payloads from smart contracts on the Binance Smart Chain.

Twenty-three million devices and hosts worldwide were compromised with infostealers last year.

The method involved prompts that detailed scenarios based on a fictional virtual environment.