Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs PowerShell scripts in Windows shortcut files to evade conventional security detection. It carries the Koi Stealer virus, capable of stealing sensitive information. Experts advise disabling wscript.exe via AppLocker, closely monitoring PowerShell execution logs, and deploying behaviour-based detection tools to counter these types of threats.
New Triada comes preinstalled on Android devices
A new variant of the Triada Trojan has been discovered pre-installed on Android devices, enabling data theft from the moment the device is set up,
