New WhatsApp malware campaign uses renamed Windows tools to evade detection

Microsoft warns users that multi-stage malware exploits trusted messaging apps to steal information and run hidden system commands ...
techtimes

Qbot Malware Discovered: Here's How It Uses PDFs and WSF Files to Infect Your Computer

QBot malware has been a persistent threat to Windows devices for some time now, and the new phishing campaign using Windows Script Files (WSF) is making it easier than ever to infect these devices.
Bleeping Computer

New QBot email attacks use PDF and WSF combo to install malware

QBot malware is now distributed in phishing campaigns utilizing PDFs and Windows Script Files (WSF) to infect Windows devices. Qbot (aka QakBot) is a former banking trojan that evolved into malware ...
Bleeping Computer

Emotet malware now installs via PowerShell in Windows shortcut files

The Emotet botnet is now using Windows shortcut files (.LNK) containing PowerShell commands to infect victims computers, moving away from Microsoft Office macros that are now disabled by default. The ...

WhatsApp File, One Click, Full Control: Microsoft Flags Silent Malware Attack Using VBS Scripts

Microsoft warns of a new silent cyberattack spreading through WhatsApp messages with disguised VBS files. The malware hides ...
CSO Online

WhatsApp malware campaign uses malicious VBS files to gain persistent access

The attack chain relies on delayed execution, trusted Windows utilities, and legitimate hosting services to maintain ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
Hosted on MSN

This new Windows malware hides in plain sight to install Remcos RAT

It does not crash systems or raise alarms. It blends into everyday Windows activity and works quietly in the background. By the time it is noticed, control may already be lost. Security teams are ...
Infosecurity-magazine.com

Raspberry Robin Distributed Through Windows Script Files

Threat actors distributing Raspberry Robin now use Windows Script Files (WSF) to spread the worm alongside other methods, such as USB drives. HP Threat Research identified new campaigns starting in ...
TWCN Tech News

Why is Delta Executor file showing as virus?

If you’re wondering why the Delta Executor file is showing as a virus on your Windows 11/10 PC, read this post. We will explain what Delta Executor is and why antivirus software often flag it. Delta ...