Stealthy Malware Campaign Uses Fake Windows Update Site To Infect PCs

Security researchers at Malwarebytes have uncovered a new malware campaign targeting Windows users with a fraudulent clone of Microsoft's site.

Do not fall for this fake Windows update support site. It’s spreading a password-stealing malware

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows update installer ...

Malware campaign lures users with fake Windows Update website

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...

New WhatsApp malware campaign uses renamed Windows tools to evade detection

Microsoft warns users that multi-stage malware exploits trusted messaging apps to steal information and run hidden system ...
Cybernews

CPUID website hacked: users report HWMonitor and CPU-Z delivering malware

The CPUID website was compromised, leading to popular Windows utilities such as CPU-Z and HWMonitor delivering multi-stage, ...
ZDNet

This password-stealing malware posed as a Windows 11 download

Windows 10 users need to be cautious about fake Windows 11 installers that are being used to spread the info-stealing RedLine malware. RedLine is not especially sophisticated malware but can steal ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
Bleeping Computer

New attacks use Windows security bypass zero-day to drop malware

New phishing attacks use a Windows zero-day vulnerability to drop the Qbot malware without displaying Mark of the Web security warnings. When files are downloaded from an untrusted remote location, ...