Stasshe

Fortinet’s FortiGuard Labs has published a detailed analysis of a phishing campaign targeting Ukrainian organizations. The attackers used an unusual SVG file as the initial infection vector, which ultimately led to the deployment of Amatera Stealer (information-stealing malware) and PureMiner (a stealth crypto-miner).

The SVG file triggered a password-protected archive containing a CHM file that launched a loader called “CountLoader,” enabling fileless execution, process hollowing, and DLL side-loading.

This combination of stealer + miner, delivered through an SVG-based chain, shows a growing sophistication in phishing campaigns, especially those aimed at critical sectors.

Full report: https://www.fortinet.com/jp/blog/threat-research/svg-phishing-hits-ukraine-with-amatera-stealer-pureminer

StatCounter’s latest OS share data shows a bizarre spike in Windows 7 usage: globally up from 2.04% in August to 9.15% in October, with Asia hitting 17.74%. The strangest case? Singapore, where Windows 7 allegedly commands 91.53% — overtaking both Windows 10 and 11.

Released in 2009 and officially unsupported since 2023, Windows 7’s sudden “renaissance” has sparked speculation. Reddit users suggest data centers spinning up massive numbers of Windows 7 VMs may be skewing the stats. Others joke someone booted a million legacy machines just to mess with the graph.

StatCounter reports usage by percentage, not absolute numbers — so even a concentrated VM deployment could distort the global picture.

(Japanese article) https://news.yahoo.co.jp/articles/be4dbd5406cda9a6be7277e75edeafd909e232e9