New 'Quantum' Builder Lets Attackers Easily Create Malicious Windows Shortcuts
A new malware tool that enables cybercriminal actors to build malicious Windows shortcut (.LNK) files has been spotted for sale on cybercrime forums
Stay updated on the latest discussions and trends in information security across various forums with our comprehensive coverage.
Search across headline titles and summaries.
Background for this topic.
Forums are online discussion spaces where users post questions, answers, files, and messages organized by topic. In security, the term can describe legitimate professional communities, technical support boards, and underground marketplaces or criminal discussion sites. Their content may include vulnerability research, configuration advice, leaked credentials, stolen data, exploit code, or offers of illicit services.
Forums are relevant to security because posts and attachments can expose users to phishing, malware, malicious links, or accidental disclosure of sensitive information. Poor authentication, access control, moderation, or logging can also make a forum itself an attack surface. Defenders may monitor relevant public and restricted forums as a source of threat intelligence, while treating unverified claims and downloaded material as potentially hostile. Security teams should validate vulnerability reports, avoid interacting with criminal infrastructure unnecessarily, preserve material lawfully for investigation, and account for privacy and legal constraints when collecting forum data.
A new malware tool that enables cybercriminal actors to build malicious Windows shortcut (.LNK) files has been spotted for sale on cybercrime forums
Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the "RSOCKS" botnet, a collection of millions of hacked devices that were sold as "proxies" to cybercriminals looking for ways to route their malicious traffic through someone else's computer. While the coordinated action did not name the Russian hackers allegedly behind RSOCKS, KrebsOnSecurity has identified its owner as a Russian man living abroad who also runs the world's top Russian spamming forum.
After bragging in underground forums, the woman who stole 100 million credit applications from Capital One has been found guilty.
A Kremlin spokesman said that the St. Petersburg International Economic Forum accreditation and admissions systems were shut down by a DDoS attack.