Hackers are exploiting the email settings of the PayPal payment platform to send phishing emails from a legitimate PayPal email address, bypassing security and spam filters. The hackers trick victims into downloading malware by convincing them to call a “PayPal help desk” to rectify an unexpected delivery address change or suspicious transaction, and then advising them to install software that allows the hackers to potentially loot bank accounts.
Chinese hackers evade ESET with MAVInject.exe
Chinese hacking group Earth Preta has been found using a novel technique to bypass antivirus software using a valid Microsoft tool, MAVInject.exe. The group’s malware
