Malware - Highlights from the Week of March 23-29, 2026
Basically, criminals are using new tricks to steal your data and money.
This past week revealed new malware threats, including infostealers and scams. Users of popular platforms are at risk. Stay alert and protect your data with updated security measures.
What Happened
Last week in cybersecurity was marked by several alarming incidents. Notably, criminals have started renting virtual phones to bypass bank security measures. This tactic allows them to execute fraudulent transactions without raising immediate red flags. Additionally, a bogus Avast website has been reported that fakes virus scans and instead installs Venom Stealer, a malware designed to steal sensitive information.
Another significant development was the emergence of Infiniti Stealer, a new macOS infostealer that employs ClickFix and Python/Nuitka to trick users into executing malicious commands. This malware uses fake CAPTCHA pages to lure victims, showcasing the evolving tactics of cybercriminals.
Who's Being Targeted
The recent wave of malware primarily targets everyday users who may not be aware of these sophisticated scams. Bank customers are particularly at risk due to the virtual phone tactic, which enables criminals to bypass traditional security checks. Furthermore, users of popular software like Avast are being misled by fake websites that promise security but deliver malware instead.
The Infiniti Stealer specifically targets macOS users, indicating that even those on Apple devices are not immune to these threats. The GlassWorm attack, which installs a fake browser extension for surveillance, also poses a risk to users who may unknowingly compromise their privacy.
Signs of Infection
There are several signs that may indicate an infection or compromise. Users should be wary of unexpected prompts for software updates or scans, especially from unofficial sources. If you notice unusual activity on your bank accounts or receive strange messages about your device security, these could be red flags.
For those who have installed suspicious browser extensions, such as those involved in the GlassWorm attack, you may experience unexpected behavior in your browser, including altered search results or new, unwanted ads. Keeping an eye on your device’s performance can also help identify potential infections early.
How to Protect Yourself
To safeguard against these threats, it's crucial to stay informed about the latest scams and malware. Always verify the legitimacy of websites before entering personal information. Use reputable security software, like Malwarebytes, which can help detect and eliminate threats.
Regularly update your operating system and applications to patch vulnerabilities. Consider enabling two-factor authentication on your bank accounts to add an extra layer of security. Lastly, educate yourself about the latest scams to recognize and avoid them before they can cause harm.