Malware Archives • Page 58 of 129 • Daily CyberSecurity

FINALDRAFT Malware Exploits Outlook Drafts for Covert Communication

Do Son February 16, 2025

In a recent investigation into the REF7707 intrusion set, Elastic Security Labs has identified a new malware...

Magento Credit Card Skimmer Uses Tag to Evade Detection Magento Credit Card Stealer npm package reverse shell

Magento Credit Card Skimmer Uses Tag to Evade Detection

Do Son February 15, 2025

A new MageCart attack targeting Magento-powered eCommerce websites has been uncovered by researchers at Sucuri, revealing a...

New I2PRAT Malware: Advanced, Undetectable? Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

New I2PRAT Malware: Advanced, Undetectable?

Do Son February 13, 2025

Cybersecurity researchers at Sekoia have uncovered a new and sophisticated Remote Access Trojan (RAT) leveraging the Invisible...

Lazarus Group’s Infostealer Malware Targets Developers in New Espionage Campaigns

Do Son February 13, 2025

North Korea’s infamous Lazarus Group is back in the spotlight, this time deploying a sophisticated infostealer malware...

BTMOB RAT: Beware of Fake Streaming and Crypto Mining Apps

Do Son February 12, 2025

A newly discovered Android Remote Access Trojan (RAT) called BTMOB RAT has been observed targeting unsuspecting users...

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives CoinMiner Malware

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives

Do Son February 12, 2025

A new report from AhnLab Security Intelligence Center (ASEC) reveals a concerning trend: the distribution of cryptocurrency-mining...

Sandworm APT Exploits Trojanized KMS Tools to Target Ukrainian Users in Cyber Espionage Campaign Sandworm APT - APT44

Sandworm APT Exploits Trojanized KMS Tools to Target Ukrainian Users in Cyber Espionage Campaign

Do Son February 11, 2025

The notorious Sandworm APT (APT44), a Russian-state-sponsored threat actor affiliated with the GRU (Russia’s Main Intelligence Directorate),...

Malicious Models on Hugging Face: A New Threat to AI Development nullifAI

Malicious Models on Hugging Face: A New Threat to AI Development

Do Son February 10, 2025

New research from ReversingLabs has uncovered a novel technique for distributing malware on the Hugging Face platform,...

LegionLoader Malware Downloader Resurfaces with 2,000+ New Samples

Do Son February 10, 2025

A new analysis from the TEHTRIS Threat Intelligence team details the resurgence of LegionLoader, a sophisticated malware...

BadIIS Malware Hijacks Asian Websites for SEO Fraud

Do Son February 10, 2025

Trend Micro researchers have uncovered a widespread SEO manipulation campaign orchestrated by a Chinese-speaking group utilizing a...

Hackers Exploit Google Tag Manager to Steal Credit Card Data from Magento Sites Google Tag Manager Skimmer

Hackers Exploit Google Tag Manager to Steal Credit Card Data from Magento Sites

Do Son February 9, 2025

In a recent incident, a Magento-based eCommerce website fell victim to a sophisticated credit card skimming attack,...

Abyss Locker Ransomware: Inside the Stealthy Network Intrusions and Destructive Attacks INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

Abyss Locker Ransomware: Inside the Stealthy Network Intrusions and Destructive Attacks

Do Son February 9, 2025

Abyss Locker, an emerging ransomware group that surfaced in 2023, has swiftly escalated its cyber onslaught throughout...

Massive Indian Mobile Banking Heist Uncovered: FatBoyPanel’s Trojan Network Exposes 50,000 Users’ Data

Do Son February 9, 2025

The zLabs research team has uncovered a large-scale mobile banking malware operation targeting users of Indian financial...

Flesh Stealer Malware Targets Browsers and Cryptocurrency Wallets

Do Son February 9, 2025

CYFIRMA has released a report on a new information-stealing malware called Flesh Stealer. This malware, written in...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Malicious Cisco AnyConnect Ads Target Users with NetSupport RAT

Do Son February 8, 2025

A new malvertising campaign is distributing a fake Cisco AnyConnect installer that delivers the NetSupport RAT Trojan....

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery AsyncRAT Delivery

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery

Do Son February 7, 2025

Forcepoint X-Labs exposes a new campaign utilizing Python, TryCloudflare, and Dropbox to spread the notorious AsyncRAT. The...

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage

Do Son February 6, 2025

The notorious North Korean APT group Kimsuky has continued its cyber espionage operations, leveraging spear-phishing attacks and...

BADBOX Botnet: Pre-installed Malware Targets Android Devices Android BADBOX Botnet

BADBOX Botnet: Pre-installed Malware Targets Android Devices

Do Son February 6, 2025

A new and insidious botnet dubbed BADBOX is infecting hundreds of thousands of Android devices, with the...

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks

Do Son February 6, 2025

Morphisec Threat Labs has uncovered a sophisticated multi-stage malware campaign attributed to the Silver Fox APT, leveraging...

Malicious Go Package Exploits Caching for Stealthy Persistence

Do Son February 5, 2025

Socket researchers have discovered a malicious typosquatting package in the Go ecosystem that exploits the Go Module...