Procolored distributed malware-infected software for six months, impacting several printer models. The issue surfaced when YouTuber Cameron Coward detected infections during a printer review. Two malware strains, Win32.Backdoor.XRedRAT.A and MSIL.Trojan-Stealer.CoinStealer.H, were identified, with the latter manipulating cryptocurrency transactions. Procolored has since removed the affected software and is implementing improved security measures.
New Phantom Stealer Campaign Hits Windows Machines Through ISO Mounting
Researchers have uncovered a sophisticated phishing campaign originating in Russia that deploys the Phantom information-stealing malware via malicious ISO files. The attack, dubbed “Operation MoneyMount-ISO,”
