Malware Archives • Page 54 of 129 • Daily CyberSecurity

ClearFake Malware Variant Exploits Web3 in New Attacks Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

ClearFake Malware Variant Exploits Web3 in New Attacks

Do Son March 19, 2025

A new variant of the ClearFake malware is exploiting Web3 capabilities to enhance its malicious operations, according...

Microsoft Uncovers Sophisticated StilachiRAT Malware GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

Microsoft Uncovers Sophisticated StilachiRAT Malware

Do Son March 19, 2025

Microsoft Incident Response researchers have discovered a novel remote access trojan (RAT) named StilachiRAT, demonstrating advanced techniques...

JPHP Interpreter Used to Distribute Downloader Malware JPHP Malware

JPHP Interpreter Used to Distribute Downloader Malware

Do Son March 19, 2025

AhnLab Security intelligence Center (ASEC) has recently uncovered a malware campaign utilizing the JPHP interpreter to distribute...

Steganographic Campaign Distributes Multiple Malware Variants, Including Remcos and AsyncRAT

Do Son March 19, 2025

A new report by Seqrite has uncovered an ongoing steganographic campaign that is being used to distribute...

CERT-UA Alert: DarkCrystal RAT Deployed via Signal in Ukraine

Do Son March 19, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) has issued a security alert regarding a series of...

FIN7’s New Stealth Weapon: AnubisBackdoor Emerges in the Wild DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

FIN7’s New Stealth Weapon: AnubisBackdoor Emerges in the Wild

Do Son March 18, 2025

Threat intelligence company PRODAFT uncovers a new Python-based backdoor named AnubisBackdoor, wielded by the infamous FIN7 group,...

Unusual Malware Samples Discovered, Including C++/CLI IIS Backdoor

Do Son March 18, 2025

A recent report by Unit 42 highlights the discovery of several new malware samples with unique characteristics....

Massive Ad Fraud Campaign Deployed 331 Apps, Resulting in 60 Million Downloads

Do Son March 18, 2025

Cybercriminals have once again exploited Google Play’s security mechanisms, infiltrating the app marketplace with at least 331...

North Korean Hackers Deploy DocSwap Malware Disguised as Security App North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Hackers Deploy DocSwap Malware Disguised as Security App

Do Son March 17, 2025

A newly discovered malware, dubbed “DocSwap,” is targeting mobile device users in South Korea, according to a...

Impossible Recovery? Beating Akira Ransomware with GPUs Decrypt Akira Ransomware

Impossible Recovery? Beating Akira Ransomware with GPUs

Do Son March 17, 2025

If your system becomes infected by ransomware, recovering your data is virtually impossible unless you concede to...

SocGholish Malware Facilitates RansomHub Distribution GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

SocGholish Malware Facilitates RansomHub Distribution

Do Son March 17, 2025

A new analysis by Trend Research has shed light on intrusion techniques involving the malware-as-a-service (MaaS) framework...

Cryptominers Exploit Exposed Jupyter Notebooks in Novel Campaign Exploit Jupyter Notebooks

Cryptominers Exploit Exposed Jupyter Notebooks in Novel Campaign

Do Son March 16, 2025

Cado Security Labs has uncovered a new campaign exploiting misconfigured Jupyter Notebooks to deliver cryptominers to both...

OctoV2 Android Banking Trojan Masquerades as Deepseek AI in Phishing Attack

Do Son March 16, 2025

A new report from K7 Labs has uncovered a sophisticated Android banking Trojan campaign that uses the...

Credit Card Skimmer and Backdoor Found Lurking on WordPress E-commerce Site WordPress Backdoor

Credit Card Skimmer and Backdoor Found Lurking on WordPress E-commerce Site

Do Son March 16, 2025

A new report from Sucuri reveals the increasingly sophisticated tactics employed by cybercriminals targeting e-commerce websites. In...

North Korean ScarCruft APT Targets Users with Novel KoSpy Android Spyware

Do Son March 15, 2025

A new Android surveillance tool, dubbed KoSpy, has been discovered by Lookout Threat Lab researchers, with evidence...

Booking.com Impersonated in Phishing Campaign Delivering Credential-Stealing Malware Booking Phishing Campaign

Booking.com Impersonated in Phishing Campaign Delivering Credential-Stealing Malware

Do Son March 15, 2025

A sophisticated phishing campaign impersonating Booking.com is targeting organizations in the hospitality industry, using a novel social...

Head Mare and Twelve: Inside the Collaboration Targeting Russian Companies two hacktivist groups: Head Mare and Twelve

Head Mare and Twelve: Inside the Collaboration Targeting Russian Companies

Do Son March 14, 2025

In a series of attacks targeting Russian companies in September 2024, cybersecurity researchers uncovered evidence of collaboration...

JSPSpy Webshells Found with Custom File Management Tool JSPSpy web shell

JSPSpy Webshells Found with Custom File Management Tool

Do Son March 13, 2025

Hunt researchers have recently uncovered a cluster of JSPSpy web shell servers with a surprising addition: a...

New Sobolan Malware Campaign Targets Jupyter Notebooks and Cloud-Native Environments

Do Son March 13, 2025

Aqua Nautilus researchers have uncovered a new malware campaign that specifically targets interactive computing environments like Jupyter...

XCSSET Malware Returns with Enhanced Obfuscation and Persistence Techniques XCSSET macOS malware

XCSSET Malware Returns with Enhanced Obfuscation and Persistence Techniques

Do Son March 13, 2025

Microsoft Threat Intelligence has discovered a new variant of the XCSSET malware, a sophisticated threat targeting macOS...