Malware Archives • Page 61 of 131 • Daily CyberSecurity

Flesh Stealer Malware Targets Browsers and Cryptocurrency Wallets

Do Son February 9, 2025

CYFIRMA has released a report on a new information-stealing malware called Flesh Stealer. This malware, written in...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Malicious Cisco AnyConnect Ads Target Users with NetSupport RAT

Do Son February 8, 2025

A new malvertising campaign is distributing a fake Cisco AnyConnect installer that delivers the NetSupport RAT Trojan....

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery AsyncRAT Delivery

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery

Do Son February 7, 2025

Forcepoint X-Labs exposes a new campaign utilizing Python, TryCloudflare, and Dropbox to spread the notorious AsyncRAT. The...

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage

Do Son February 6, 2025

The notorious North Korean APT group Kimsuky has continued its cyber espionage operations, leveraging spear-phishing attacks and...

BADBOX Botnet: Pre-installed Malware Targets Android Devices Android BADBOX Botnet

BADBOX Botnet: Pre-installed Malware Targets Android Devices

Do Son February 6, 2025

A new and insidious botnet dubbed BADBOX is infecting hundreds of thousands of Android devices, with the...

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks

Do Son February 6, 2025

Morphisec Threat Labs has uncovered a sophisticated multi-stage malware campaign attributed to the Silver Fox APT, leveraging...

Malicious Go Package Exploits Caching for Stealthy Persistence

Do Son February 5, 2025

Socket researchers have discovered a malicious typosquatting package in the Go ecosystem that exploits the Go Module...

$50 for Your Data: NOVA Stealer Sold as Malware-as-a-Service Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

$50 for Your Data: NOVA Stealer Sold as Malware-as-a-Service

Do Son February 5, 2025

The BI.ZONE Threat Intelligence team has reported a significant ongoing campaign distributing the NOVA stealer, a new...

SmartApeSG Campaign Uncovered: A Deep Dive into NetSupport RAT Distribution and Suspected Threat Actor Connections CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

SmartApeSG Campaign Uncovered: A Deep Dive into NetSupport RAT Distribution and Suspected Threat Actor Connections

Do Son February 5, 2025

A recent investigation by Team Cymru has revealed an intricate web of malicious infrastructure linking the SmartApeSG...

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface

Do Son February 5, 2025

Cybersecurity researchers at SentinelOne have uncovered new macOS malware variants attributed to North Korean threat actors, expanding...

SparkCat Malware: Sneaky Crypto Stealer Found in Google Play and App Store Apps

Do Son February 5, 2025

Kaspersky Labs researchers have uncovered a new malware campaign dubbed “SparkCat” that uses optical character recognition (OCR)...

Coyote Banking Trojan: A Multi-Stage Financial Cyber Threat Targeting Brazil

Do Son February 4, 2025

Cybersecurity researchers at FortiGuard Labs have uncovered a stealthy and highly sophisticated banking trojan dubbed Coyote, which...

TAG-124: A Deep Dive into the Traffic Distribution System Powering Malware Campaigns

Do Son February 4, 2025

Cybersecurity researchers at Insikt Group have uncovered a multi-layered traffic distribution system (TDS), dubbed TAG-124, which is...

Tria Stealer: Android Malware Hijacks WhatsApp and Telegram Accounts Delivery

Tria Stealer: Android Malware Hijacks WhatsApp and Telegram Accounts

Do Son February 3, 2025

A newly uncovered Android malware campaign, dubbed Tria Stealer, has been actively targeting users in Malaysia and...

CL-STA-0048: Chinese-Linked APT Targets Telecoms in South Asia DPRK IT Workers, APT38 Crypto Forfeiture

CL-STA-0048: Chinese-Linked APT Targets Telecoms in South Asia

Do Son February 3, 2025

A newly identified cyberespionage campaign, tracked as CL-STA-0048, has been uncovered by Unit 42 researchers targeting high-value...

Tiny FUD: Fully Undetectable macOS Backdoor Discovered Tiny FUD backdoor

Tiny FUD: Fully Undetectable macOS Backdoor Discovered

Do Son February 3, 2025

With macOS increasingly becoming a prime target for cybercriminals, researchers are uncovering more sophisticated malware designed to...

10,000 WordPress Websites Compromised to Deliver macOS and Windows Malware SocGholish Windows malware

10,000 WordPress Websites Compromised to Deliver macOS and Windows Malware

Do Son February 3, 2025

A new report reveals that over 10,000 WordPress websites have been compromised to deliver malware targeting both...

Lumma Stealer Uses GitHub as a Malware Delivery Platform Artivion cybersecurity - Zero-Day Attacks

Lumma Stealer Uses GitHub as a Malware Delivery Platform

Do Son February 3, 2025

Cybersecurity researchers at Trend Micro Managed XDR have uncovered a sophisticated malware campaign that leverages GitHub’s release...

North Korean APT Lazarus Uses Malicious npm Package to Target Developers

Do Son February 2, 2025

Cybersecurity researchers at Socket have uncovered a new supply chain attack orchestrated by Lazarus Group, the notorious...

SparkRAT: A Persistent Cross-Platform Cyber Threat Targeting macOS and Beyond Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

SparkRAT: A Persistent Cross-Platform Cyber Threat Targeting macOS and Beyond

Do Son February 2, 2025

Since its initial release on GitHub in 2022 by user XZB-1248, SparkRAT has evolved into a widely...