Malware Archives • Page 43 of 129 • Daily CyberSecurity

Critical Wazuh RCE (CVE-2025-24016) Actively Exploited by Mirai Botnets Wazuh RCE, Mirai Botnets

Critical Wazuh RCE (CVE-2025-24016) Actively Exploited by Mirai Botnets

Do Son June 9, 2025

Akamai’s Security Intelligence and Response Team (SIRT) has uncovered active exploitation of CVE-2025-24016, a critical remote code...

From Cheats to Compromise: Blitz Malware Exploits Gamers via Backdoored Standoff 2 Cheats Blitz infection chain

From Cheats to Compromise: Blitz Malware Exploits Gamers via Backdoored Standoff 2 Cheats

Do Son June 9, 2025

Unit 42, the threat intelligence arm of Palo Alto Networks, has uncovered a malware campaign involving Blitz,...

DuplexSpy RAT: New C# Malware Toolkit Emerges on GitHub RAT

DuplexSpy RAT: New C# Malware Toolkit Emerges on GitHub

Do Son June 9, 2025

CYFIRMA’s Threat Intelligence Team has published an in-depth analysis of DuplexSpy RAT, a powerful and modular remote...

Destructive npm Packages Disguised as Utilities Trigger Remote System Wipes on Demand Wiping Systems

Destructive npm Packages Disguised as Utilities Trigger Remote System Wipes on Demand

Do Son June 9, 2025

The Socket Threat Research Team has disclosed two dangerous npm packages that masquerade as helpful developer tools—but...

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign Demo for CVE-2017-0199

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign

Do Son June 9, 2025

FortiGuard Labs has uncovered a renewed phishing campaign that leverages the eight-year-old CVE-2017-0199 vulnerability to deploy FormBook,...

EnigmaCyberSecurity: Brazil-Focused Banking Malware Campaign Uses RATs and Malicious Extensions Attack chain using a browser extension

EnigmaCyberSecurity: Brazil-Focused Banking Malware Campaign Uses RATs and Malicious Extensions

Do Son June 9, 2025

Positive Technologies has uncovered an ongoing, multi-stage cybercrime campaign—dubbed “EnigmaCyberSecurity”—primarily targeting Brazilian users and financial institutions. The...

New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721 Mirai Botnet Variants malware CVE-2024-3721

New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721

Do Son June 8, 2025

Kaspersky researchers have uncovered a fresh wave of attacks exploiting CVE-2024-3721 to deploy a revamped variant of...

Fake Government Android App Found Delivering Stealer Malware Android Malware, PM KISAN YOJNA

Fake Government Android App Found Delivering Stealer Malware

Do Son June 8, 2025

Security researchers at K7 Computing have uncovered a malicious Android campaign that leverages the name of a...

Warning: “Sleeper Agent” Chrome Extensions Infect 1.5 Million Users!

Do Son June 6, 2025

Browser security firm LayerX has identified a covert network of malicious Chrome extensions acting as “sleeper agents”—seemingly...

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector ClickFix Phishing, Booking.com Scam

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector

Do Son June 6, 2025

According to Cofense Intelligence, a sophisticated and evolving phishing campaign is using spoofed Booking.com emails and fake...

ViperSoftX Resurfaces: Stealthy Crypto-Stealing Malware Hits Global Users! ViperSoftX, Crypto Malware

ViperSoftX Resurfaces: Stealthy Crypto-Stealing Malware Hits Global Users!

Do Son June 6, 2025

The AhnLab Security Intelligence Center (ASEC) has issued a fresh warning about the resurgence of ViperSoftX, a...

Clickfix Meets macOS: AMOS Variant Targets Spectrum Users in Credential Harvesting Campaign AMOS Stealer, macOS Malware

Clickfix Meets macOS: AMOS Variant Targets Spectrum Users in Credential Harvesting Campaign

Do Son June 6, 2025

Researchers at CloudSEK have uncovered a new variant of the Atomic macOS Stealer (AMOS) targeting macOS users...

Alert: Fake DocuSign & Gitcodes Pages Install NetSupport RAT Malware! NetSupport RAT, Phishing Campaign

Alert: Fake DocuSign & Gitcodes Pages Install NetSupport RAT Malware!

Do Son June 5, 2025

Security researchers at DomainTools have uncovered a highly deceptive malware campaign designed to exploit user trust and...

ViperSoftX Evolves: New PowerShell Malware Boasts Stealth & Persistence PowerShell Malware, ViperSoftX

ViperSoftX Evolves: New PowerShell Malware Boasts Stealth & Persistence

Do Son June 5, 2025

K7 Labs has unveiled a detailed analysis of a new PowerShell-based malware campaign that builds on 2024’s...

Crocodilus Trojan Evolves: Android Malware Goes Global with New Seed Phrase Stealer and Contact Injection

Do Son June 4, 2025

The cybercriminal underworld has a new weapon in its arsenal: Crocodilus, an Android banking trojan that’s rapidly...

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Do Son June 4, 2025

Socket’s Threat Research Team has uncovered a targeted supply chain attack leveraging malicious RubyGems impersonating Fastlane plugins....

AI Interface Hijacked: Open WebUI Exploited for Cryptominers and Stealthy AI Malware Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

AI Interface Hijacked: Open WebUI Exploited for Cryptominers and Stealthy AI Malware

Do Son June 4, 2025

The Sysdig Threat Research Team (TRT) has uncovered a malicious campaign exploiting a misconfigured Open WebUI instance—an...

New WordPress Malware Masquerades as Legit Plugin with Data Exfiltration and RCE Capabilities WordPress Malware, Hidden Plugin

New WordPress Malware Masquerades as Legit Plugin with Data Exfiltration and RCE Capabilities

Do Son June 4, 2025

The Wordfence Threat Intelligence team has uncovered a deceptive and highly persistent WordPress malware variant that disguises...

New npm Packages Exposed: Crypto Drainers Targeting BSC & Ethereum Wallets npm security, crypto drainer

New npm Packages Exposed: Crypto Drainers Targeting BSC & Ethereum Wallets

Do Son June 4, 2025

Socket Threat Research Team has uncovered a new threat lurking within the JavaScript ecosystem: four malicious npm...

India SIM-Binding Mandate Messaging App KYC WhatsApp DMA Interoperability BirdyChat Haiket Denmark Social Media Ban CVE-2025-55177 WhatsApp vulnerability, zero-click flaw npm Malware, System Wipe WhatsApp Windows App, WebView2 Downgrade WhatsApp Ban, US House NSO WhatsApp, Pegasus Spyware WhatsApp iPad iPadOS app

NSO Group Ordered to Pay WhatsApp $167M for Pegasus Spyware Attack

Do Son June 3, 2025

The notorious Israeli commercial spyware developer NSO Group has been ordered by a U.S. court jury to...