Malware Archives • Page 52 of 131 • Daily CyberSecurity

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation FOG ransomware, phishing

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation

Do Son April 22, 2025

Trend Micro has identified a recent campaign involving FOG ransomware, demonstrating the adaptability of cybercriminals in their...

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks super

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks

Do Son April 22, 2025

The Cleafy Threat Intelligence team has uncovered a new and sophisticated Android malware campaign, dubbed ‘SuperCard X,’...

Malicious npm Packages Backdoor Telegram Bot Developers npm Malware, Telegram Bots

Malicious npm Packages Backdoor Telegram Bot Developers

Do Son April 22, 2025

A new supply chain attack has been uncovered by Socket’s Threat Research Team, targeting developers who create...

RustoBot Botnet Exploits Router Flaws in Sophisticated Attacks RustoBot, Router Vulnerability

RustoBot Botnet Exploits Router Flaws in Sophisticated Attacks

Do Son April 22, 2025

FortiGuard Labs recently discovered RustoBot, written in Rust, a memory-safe language known for its performance and security,...

Magecart Attack Uncovered: Obfuscated JavaScript Steals Credit Card Data WordPress Backdoor

Magecart Attack Uncovered: Obfuscated JavaScript Steals Credit Card Data

Do Son April 22, 2025

The Yarix Incident Response Team has uncovered a sophisticated web skimming operation that weaponized obfuscated JavaScript to...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

APT41/RedGolf Infrastructure Briefly Exposed: Fortinet Zero-Days Targeted Shiseido

Do Son April 21, 2025

In a rare window into the operations of an advanced persistent threat, a KeyPlug-linked infrastructure briefly went...

IronHusky APT Resurfaces with Evolved MysterySnail RAT IronHusky, MysterySnail

IronHusky APT Resurfaces with Evolved MysterySnail RAT

Do Son April 18, 2025

In a newly released report, Kaspersky’s Global Research and Analysis Team (GReAT) has revealed the resurgence of...

Gamaredon’s PteroLNK Malware: Stealthy Espionage Tactics Uncovered Gamaredon, PteroLNK

Gamaredon’s PteroLNK Malware: Stealthy Espionage Tactics Uncovered

Do Son April 18, 2025

A recent deep-dive analysis by HarfangLab uncovers new insights into the persistent and ever-evolving operations of Gamaredon,...

Gorilla Android Malware: Evolving Threat with Espionage Capabilities RatOn, Android trojan

Gorilla Android Malware: Evolving Threat with Espionage Capabilities

Do Son April 18, 2025

A newly discovered Android malware dubbed Gorilla is quietly emerging as a serious threat, according to a...

Interlock Ransomware Uses Evolving Tactics to Evade Detection Interlock Ransomware, ClickFix

Interlock Ransomware Uses Evolving Tactics to Evade Detection

Do Son April 18, 2025

A new report by Sekoia Threat Detection & Research (TDR) details the activities of Interlock, a ransomware...

Node.js Misused in Malvertising Campaigns to Deliver Stealthy Malware Node.js malware, malvertising attacks

Node.js Misused in Malvertising Campaigns to Deliver Stealthy Malware

Do Son April 17, 2025

Microsoft Defender Experts (DEX) has observed a rise in malicious campaigns that use Node.js to deliver malware...

Novel Attack Uses Teams Phishing and Zero-Day TypeLib Hijacking Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

Novel Attack Uses Teams Phishing and Zero-Day TypeLib Hijacking

Do Son April 17, 2025

In a concerning escalation of social engineering and persistence techniques, cybersecurity firm ReliaQuest has uncovered a new...

APT29 Targets European Diplomats with Wine-Themed Phishing APT29, Phishing Campaign

APT29 Targets European Diplomats with Wine-Themed Phishing

Do Son April 17, 2025

A new wave of targeted phishing attacks aimed at European governments and diplomats is underway, with the...

LummaStealer: The Evolution of a Sophisticated MaaS LummaStealer, Malware-as-a-Service

LummaStealer: The Evolution of a Sophisticated MaaS

Do Son April 17, 2025

Once a rising name in the stealer malware scene, LummaStealer has now evolved into one of the...

CrazyHunter Ransomware Targets Taiwan’s Critical Infrastructure CrazyHunter, Ransomware

CrazyHunter Ransomware Targets Taiwan’s Critical Infrastructure

Do Son April 17, 2025

Trend Micro has uncovered a targeted ransomware campaign conducted by a newly identified threat group dubbed CrazyHunter....

Waiting Thread Hijacking: A Stealthier Code Injection Technique Thread Hijacking Process Injection

Waiting Thread Hijacking: A Stealthier Code Injection Technique

Do Son April 16, 2025

Process injection is a technique frequently employed by attackers, with its variations appearing in numerous malware. This...

UNC5174: Chinese Threat Actor Deploys New VShell RAT in Campaign Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

UNC5174: Chinese Threat Actor Deploys New VShell RAT in Campaign

Do Son April 16, 2025

The Sysdig Threat Research Team (TRT) has uncovered a new campaign by the Chinese state-sponsored threat actor...

PasivRobber: In-Depth Analysis of Sophisticated macOS Malware GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

PasivRobber: In-Depth Analysis of Sophisticated macOS Malware

Do Son April 16, 2025

A recent discovery by Kandji’s research team has brought to light a sophisticated threat targeting macOS systems:...

Malicious npm Package Installs Reverse Shell via Payment Success Magento Credit Card Stealer npm package reverse shell

Malicious npm Package Installs Reverse Shell via Payment Success

Do Son April 16, 2025

A malicious npm package, disguised as a merchant integration for the Advcash payment platform, has been discovered...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Beware Fake PDF Converters: A Social Engineering Threat

Do Son April 16, 2025

In today’s digital age, online file converters have become indispensable tools for streamlining daily workflows. However, a...