Malware Archives • Page 49 of 129 • Daily CyberSecurity

North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio North Korea malware North Korea, OFAC sanctions DPRK AI hiring, Wagemole campaigns

North Korea malware North Korea, OFAC sanctions DPRK AI hiring, Wagemole campaigns

North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio

Do Son April 28, 2025

Threat analysts at Silent Push have uncovered a new campaign orchestrated by the North Korean state-sponsored APT...

Lazarus Group’s “Operation SyncHole” Targets South Korean Industries Lazarus Group, Cyber Espionage Operation SyncHole

Lazarus Group’s “Operation SyncHole” Targets South Korean Industries

Do Son April 27, 2025

Kaspersky Labs has recently revealed a major cyber-espionage campaign conducted by the Lazarus group, dubbed “Operation SyncHole.”...

Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

DslogdRAT Malware Targets Ivanti Connect Secure via CVE-2025-0282 Zero-Day Exploit

Do Son April 26, 2025

A newly published report by Yuma Masubuchi from the JPCERT Coordination Center (JPCERT/CC) has uncovered the deployment...

Lumma Stealer: Advanced Obfuscation and Evasion Techniques Analysis Lumma Stealer InfoStealer

Lumma Stealer: Advanced Obfuscation and Evasion Techniques Analysis

Do Son April 25, 2025

Lumma Stealer, a prevalent threat since its emergence in 2022, continues to evolve its tactics to evade...

Kimsuky’s PebbleDash Campaign: PowerShell Attacks & RDP Bypass Tactics Kimsuky Group PebbleDash Malware

Kimsuky’s PebbleDash Campaign: PowerShell Attacks & RDP Bypass Tactics

Do Son April 25, 2025

A recent report by the AhnLab Security intelligence Center (ASEC) has uncovered the latest tactics employed by...

ToyMaker’s Playbook: Cisco Talos Exposes IAB Tactics Leading to Cactus Ransomware ToyMaker Initial Access Broker Ransomware

ToyMaker’s Playbook: Cisco Talos Exposes IAB Tactics Leading to Cactus Ransomware

Do Son April 25, 2025

Cisco Talos’ 2023 incident response report unveils the operations of “ToyMaker,” a financially motivated Initial Access Broker...

FormBook Malware Spreads via Sophisticated Phishing Attack FormBook CVE-2017-11882

FormBook Malware Spreads via Sophisticated Phishing Attack

Do Son April 24, 2025

A new phishing campaign distributing the FormBook infostealer malware has been uncovered by Fortinet’s FortiGuard Labs, targeting...

WormLocker Ransomware Reemerges with Updated Variants

Do Son April 24, 2025

The WormLocker ransomware, first identified in 2021, is evolving. Thanks to recent analysis in the ANY.RUN sandbox,...

Unveiling a Multi-Stage Malware Attack: Cloudflare Abuse and AsyncRAT Delivery Infection chains distributing AsyncRAT

Unveiling a Multi-Stage Malware Attack: Cloudflare Abuse and AsyncRAT Delivery

Do Son April 23, 2025

In a detailed report by the Sekoia Threat Detection & Research (TDR) team, researchers have unveiled a...

Malicious Packages Stealing Crypto Credentials: A Warning for Developers npm package, crypto drainer Malicious Packages Cryptocurrency Theft

npm package, crypto drainer Malicious Packages Cryptocurrency Theft

Malicious Packages Stealing Crypto Credentials: A Warning for Developers

Do Son April 23, 2025

The Socket Threat Research Team has exposed three malicious open-source packages masquerading as developer tools — designed...

Lumma Stealer: Unpacking Its Evasive Tactics and Complex Infection Chains Lumma Stealer Malware Distribution

Lumma Stealer: Unpacking Its Evasive Tactics and Complex Infection Chains

Do Son April 23, 2025

The cybercriminal landscape is constantly evolving, with Malware-as-a-Service (MaaS) lowering the bar for entry and information stealers...

Sophisticated Backdoor Attack Targets ViPNet Networks Backdoor ViPNet

Sophisticated Backdoor Attack Targets ViPNet Networks

Do Son April 22, 2025

In a recent cybersecurity incident, a sophisticated backdoor targeting large organizations in Russia has been uncovered. The...

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation FOG ransomware, phishing

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation

Do Son April 22, 2025

Trend Micro has identified a recent campaign involving FOG ransomware, demonstrating the adaptability of cybercriminals in their...

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks super

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks

Do Son April 22, 2025

The Cleafy Threat Intelligence team has uncovered a new and sophisticated Android malware campaign, dubbed ‘SuperCard X,’...

Malicious npm Packages Backdoor Telegram Bot Developers npm Malware, Telegram Bots

Malicious npm Packages Backdoor Telegram Bot Developers

Do Son April 22, 2025

A new supply chain attack has been uncovered by Socket’s Threat Research Team, targeting developers who create...

RustoBot Botnet Exploits Router Flaws in Sophisticated Attacks RustoBot, Router Vulnerability

RustoBot Botnet Exploits Router Flaws in Sophisticated Attacks

Do Son April 22, 2025

FortiGuard Labs recently discovered RustoBot, written in Rust, a memory-safe language known for its performance and security,...

Magecart Attack Uncovered: Obfuscated JavaScript Steals Credit Card Data WordPress Backdoor

Magecart Attack Uncovered: Obfuscated JavaScript Steals Credit Card Data

Do Son April 22, 2025

The Yarix Incident Response Team has uncovered a sophisticated web skimming operation that weaponized obfuscated JavaScript to...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

APT41/RedGolf Infrastructure Briefly Exposed: Fortinet Zero-Days Targeted Shiseido

Do Son April 21, 2025

In a rare window into the operations of an advanced persistent threat, a KeyPlug-linked infrastructure briefly went...

IronHusky APT Resurfaces with Evolved MysterySnail RAT IronHusky, MysterySnail

IronHusky APT Resurfaces with Evolved MysterySnail RAT

Do Son April 18, 2025

In a newly released report, Kaspersky’s Global Research and Analysis Team (GReAT) has revealed the resurgence of...

Gamaredon’s PteroLNK Malware: Stealthy Espionage Tactics Uncovered Gamaredon, PteroLNK

Gamaredon’s PteroLNK Malware: Stealthy Espionage Tactics Uncovered

Do Son April 18, 2025

A recent deep-dive analysis by HarfangLab uncovers new insights into the persistent and ever-evolving operations of Gamaredon,...