Malware Archives • Page 59 of 131 • Daily CyberSecurity

Auto-Color: New Evasive Linux Malware Targeting Governments and Universities XZ backdoor, Docker Hub MIFARE classic backdoor C++/CLI IIS Backdoor

XZ backdoor, Docker Hub MIFARE classic backdoor C++/CLI IIS Backdoor

Auto-Color: New Evasive Linux Malware Targeting Governments and Universities

Do Son February 26, 2025

Researchers at Palo Alto Networks’ Unit 42 have uncovered a new and highly evasive Linux backdoor called...

$500 Bitcoin Demand: LCRYX Ransomware Cripples Windows

Do Son February 25, 2025

Ransomware attacks remain a formidable threat to individuals and organizations alike, with LCRYX ransomware making an unwelcome...

Lumma Stealer Malware Expands Its Reach Through YouTube and Malvertising Lumma Stealer Youtube

Lumma Stealer Malware Expands Its Reach Through YouTube and Malvertising

Do Son February 25, 2025

Silent Push Threat Analysts have uncovered new developments in the spread of Lumma Stealer, a notorious infostealer...

PolarEdge Botnet: 2,000+ IoT Devices Infected PolarEdge IoT botnet

PolarEdge Botnet: 2,000+ IoT Devices Infected

Do Son February 25, 2025

The PolarEdge botnet, a sophisticated IoT-based malware campaign, has been discovered by Sekoia’s Threat Detection & Research...

Search Engine Manipulation Leads to Backdoored App Downloads

Do Son February 24, 2025

Threat hunters at Hunt.io have uncovered a widespread malware campaign targeting Chinese-speaking users by distributing backdoored versions...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

Stately Taurus Cyber Attacks in Southeast Asia Tied to Bookworm Malware

Do Son February 24, 2025

A new report from Unit 42 has linked the Stately Taurus threat actor to Bookworm malware, revealing...

Poseidon Stealer Malware Targets Mac Users via Fake DeepSeek Site

Do Son February 24, 2025

The eSentire Threat Response Unit (TRU) has uncovered a new campaign targeting Mac users with the Poseidon...

Security Alert: AsyncRAT Malware Evades Detection with Null-AMSI

Do Son February 23, 2025

A new malware campaign uncovered by Cyble Research and Intelligence Labs (CRIL) is leveraging Null-AMSI to bypass...

GhostSocks Malware: A New Cyber Threat Leveraging SOCKS5 Backconnect for Evasion

Do Son February 23, 2025

A recent report from Infrawatch has exposed GhostSocks, a Golang-based SOCKS5 backconnect proxy malware, which has been...

ChromeUpdate & DriverEasy: North Korea’s New macOS Cyber Espionage Tools North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

ChromeUpdate & DriverEasy: North Korea’s New macOS Cyber Espionage Tools

Do Son February 23, 2025

A recent deep dive by Christopher Lopez, Senior macOS Security Researcher at Kandji, has exposed a sophisticated...

Russia-Linked Threat Actors Exploiting Signal Messenger to Eavesdrop on Sensitive Communications Signal Messenger threat

Russia-Linked Threat Actors Exploiting Signal Messenger to Eavesdrop on Sensitive Communications

Do Son February 23, 2025

A recent report from Google Threat Intelligence Group (GTIG) has revealed a coordinated effort by multiple Russia-aligned...

LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users

Do Son February 22, 2025

A recent investigation by the AhnLab Security Intelligence Center (ASEC) has uncovered a malvertising campaign that distributes...

Apple’s Spyware Detection: Only 50% Effective? Pegasus spyware sample

Apple’s Spyware Detection: Only 50% Effective?

Do Son February 21, 2025

The Pegasus spyware, developed by Israeli commercial surveillance firm NSO Group, remains one of the most formidable...

ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure ACRStealer Infostealer malware

ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure

Do Son February 20, 2025

Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have identified a new surge in ACRStealer, a stealthy...

TA2726 & TA2727: Hackers Deploy Fake Updates to Spread Malware TA2726 and TA2727 & FrigidStealer malware

TA2726 & TA2727: Hackers Deploy Fake Updates to Spread Malware

Do Son February 20, 2025

Cybersecurity researchers at Proofpoint have identified two new cybercriminal threat actors, TA2726 and TA2727, actively exploiting fake...

Updated ShadowPad Malware Facilitates Ransomware Deployment in Global Attacks CVE-2024-1212 Vulnerability

Updated ShadowPad Malware Facilitates Ransomware Deployment in Global Attacks

Do Son February 20, 2025

A new report from Trend Micro has revealed that ShadowPad, a modular malware with deep ties to...

JavaScript-Based Malware Exploits Steganography for Covert Data Theft Stealer malware

JavaScript-Based Malware Exploits Steganography for Covert Data Theft

Do Son February 20, 2025

Cybersecurity firm CYFIRMA has uncovered a highly sophisticated malware campaign leveraging JavaScript to establish covert communication with...

REF7707: Espionage Campaign Targets South America and Southeast Asia DPRK IT Workers, APT38 Crypto Forfeiture

REF7707: Espionage Campaign Targets South America and Southeast Asia

Do Son February 20, 2025

Elastic Security Labs has recently uncovered an expansive cyber espionage campaign, codenamed REF7707, that spans across South...

Rhadamanthys Infostealer Exploits Microsoft Management Console Artivion cybersecurity - Zero-Day Attacks

Rhadamanthys Infostealer Exploits Microsoft Management Console

Do Son February 19, 2025

AhnLab Security Emergency Response Center (ASEC) has issued a warning about a new distribution method for the...

Cracked Games, Cryptojacked PCs: The StaryDobry Campaign DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

Cracked Games, Cryptojacked PCs: The StaryDobry Campaign

Do Son February 19, 2025

On December 31, cybercriminals launched a mass infection campaign, dubbed StaryDobry, leveraging the holiday season’s increased torrent...