Malware Archives • Page 43 of 131 • Daily CyberSecurity

Qwizzserial: Telegram-Driven Android SMS Stealer Infects 100,000 Devices Android Malware, Qwizzserial

Qwizzserial: Telegram-Driven Android SMS Stealer Infects 100,000 Devices

Do Son July 3, 2025

A newly uncovered Android malware family named Qwizzserial is wreaking havoc across Uzbekistan, stealing sensitive financial data...

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity

Do Son July 3, 2025

In a recent threat intelligence report, the FortiMail Incident Response (IR) team exposed a new email campaign...

New macOS Crypto Stealer Targets Ledger Live Users, Mimics AMOS with Stealthy Tactics macOS Stealer, Crypto Malware

New macOS Crypto Stealer Targets Ledger Live Users, Mimics AMOS with Stealthy Tactics

Do Son July 3, 2025

macOS users—particularly cryptocurrency holders—are being warned about a new information stealer making the rounds in early 2025....

RansomHub Breach: Six-Day Attack Leveraged RDP, RMM Tools & Mimikatz for Data Exfiltration & Ransomware INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

RansomHub Breach: Six-Day Attack Leveraged RDP, RMM Tools & Mimikatz for Data Exfiltration & Ransomware

Do Son June 30, 2025

The DFIR Report’s latest case study exposes the meticulous six-day operation of a threat actor who leveraged...

Stealthy WordPress Malware Uncovered: Multi-Stage RAT Injects via Header.php, Hides Traces

Do Son June 30, 2025

Sucuri’s Puja Srivastava recently uncovered a stealthy and complex malware campaign targeting WordPress websites that left no...

IIS & Linux Servers Hit by WogRAT, MeshAgent, & SuperShell Malware South Korea Cyberattacks, Multi-platform Malware

IIS & Linux Servers Hit by WogRAT, MeshAgent, & SuperShell Malware

Do Son June 30, 2025

AhnLab Security Intelligence Center (ASEC) has uncovered a sophisticated series of attacks aimed at both Windows IIS...

Odyssey Stealer: macOS Under Attack by ClickFix-Driven Infostealer

Do Son June 28, 2025

A new player has emerged in the macOS malware ecosystem—Odyssey Stealer—leveraging clever social engineering and targeting cryptocurrency...

Silver Fox Strikes with Fake Installers: Sainbox RAT and Hidden Rootkit Target Chinese Speakers Sainbox RAT, Hidden Rootkit

Silver Fox Strikes with Fake Installers: Sainbox RAT and Hidden Rootkit Target Chinese Speakers

Do Son June 28, 2025

Netskope Threat Labs has uncovered a stealthy malware campaign that leverages fake software installers to deploy a...

Alert: Malicious Python Package “psslib” Typosquats passlib, Shuts Down Windows Systems Python Malware, Typosquatting

Alert: Malicious Python Package “psslib” Typosquats passlib, Shuts Down Windows Systems

Do Son June 26, 2025

Socket’s Threat Research Team has uncovered a malicious Python package named psslib designed to abruptly shut down...

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign SonicWall NetExtender, Trojanized VPN Client

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

Do Son June 25, 2025

SonicWall, in collaboration with Microsoft Threat Intelligence (MSTIC), has uncovered a sophisticated campaign that distributes a Trojanized...

Rogue WordPress Plugin Unmasked: Stealthy Malware Skims Credit Cards & Steals Credentials WordPress Malware, Credit Card Skimming

Rogue WordPress Plugin Unmasked: Stealthy Malware Skims Credit Cards & Steals Credentials

Do Son June 25, 2025

The Wordfence Threat Intelligence Team has unveiled a powerful malware framework operating under the guise of a...

DRAT V2 Emerges: New Delphi-Compiled RAT Targets Indian Government with Expanded Post-Exploitation

Do Son June 25, 2025

A new variant of the DRAT remote access trojan has emerged, signaling a continued evolution in TAG-140’s...

Critical Linksys Router Flaw (CVE-2025-34037, CVSS 10.0) Actively Exploited by TheMoon Worm Linksys Router, TheMoon Worm

Critical Linksys Router Flaw (CVE-2025-34037, CVSS 10.0) Actively Exploited by TheMoon Worm

Do Son June 24, 2025

A critical vulnerability in multiple Linksys E-Series routers is being actively exploited in the wild by a...

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls SHOE RACK Malware, Reverse SSH

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls

Do Son June 24, 2025

A new malware tool dubbed SHOE RACK has come under the microscope of the UK’s National Cyber...

Spyware Reloaded: SparkKitty Stalks Crypto Wallets via TikTok Mods and Fake Apps

Do Son June 24, 2025

Kaspersky Labs has uncovered a stealthy evolution of mobile spyware connected to the infamous SparkCat campaign. Dubbed...

Wedding Invitation Scam: SpyMax RAT Targets Indian WhatsApp Users, Stealing OTPs & Banking Credentials Android Spyware, SpyMax RAT CVE-2024-0039 Android Auto-Reboot Google Play Services

Android Spyware, SpyMax RAT CVE-2024-0039 Android Auto-Reboot Google Play Services

Wedding Invitation Scam: SpyMax RAT Targets Indian WhatsApp Users, Stealing OTPs & Banking Credentials

Do Son June 24, 2025

Researchers at K7 Labs have uncovered a highly targeted Android spyware campaign aimed at Indian mobile users,...

Confucius Group Evolves: Researcher Uncovers New Modular Backdoor “Anondoor” in Latest Espionage Campaign Confucius APT, Anondoor Backdoor

Confucius Group Evolves: Researcher Uncovers New Modular Backdoor “Anondoor” in Latest Espionage Campaign

Do Son June 23, 2025

The Confucius APT group—long associated with cyber-espionage operations targeting government and military organizations in South and East...

Prometei Botnet Evolves: Linux Variant Returns With Stealthier Payloads and Monero Mining Focus Prometei Botnet, Linux Malware

Prometei Botnet Evolves: Linux Variant Returns With Stealthier Payloads and Monero Mining Focus

Do Son June 23, 2025

In March 2025, researchers at Palo Alto Networks’ Unit 42 uncovered a resurgence of the Prometei botnet,...

Mocha Manakin: New Threat Group Uses “Paste and Run” to Deploy Custom NodeJS RAT! Mocha Manakin, NodeInitRAT

Mocha Manakin: New Threat Group Uses “Paste and Run” to Deploy Custom NodeJS RAT!

Do Son June 23, 2025

Red Canary has unveiled a new adversary cluster it’s been tracking since early 2025: Mocha Manakin. Named...

RapperBot Resurfaces: 50,000+ Bots Demand Monero Extortion in New DDoS Campaigns RapperBot Botnet, DDoS Extortion

RapperBot Resurfaces: 50,000+ Bots Demand Monero Extortion in New DDoS Campaigns

Do Son June 23, 2025

A botnet called RapperBot blends technical evolution with internet-era bravado to launch attacks on over 50,000 devices...