Malware Archives • Page 63 of 131 • Daily CyberSecurity

Donot APT Group Targets Android Devices with Malicious Chat Apps Donot APT Group - Android zero-day

Donot APT Group Targets Android Devices with Malicious Chat Apps

Do Son January 23, 2025

The research team at CYFIRMA has uncovered an alarming Android malware campaign attributed to the Indian advanced...

CVE-2024-7029 and CVE-2017-17215 Exploited in Latest Murdoc Botnet Attacks FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

CVE-2024-7029 and CVE-2017-17215 Exploited in Latest Murdoc Botnet Attacks

Do Son January 23, 2025

The Qualys Threat Research Unit has unveiled an extensive campaign involving a new variant of the infamous...

Stealthy and Persistent: New Ransomware Tactics Target VMware ESXi SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

Stealthy and Persistent: New Ransomware Tactics Target VMware ESXi

Do Son January 23, 2025

Sygnia’s latest report reveals the evolving tactics of ransomware groups targeting VMware ESXi appliances. By exploiting these...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Purrglar: Emerging Stealer Targets Chrome and Exodus Wallet Data on macOS

Do Son January 22, 2025

Kandji’s Threat Research team has uncovered a potential new macOS stealer named “Purrglar.” This malware, uploaded to...

400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks DigitalPulse Proxyware malware

400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks

Do Son January 21, 2025

A recent report from the AhnLab Security Intelligence Center (ASEC) detailed the spread of DigitalPulse proxyware via...

Black Myth: Wukong DDoS Attackers Return with New AIRASHI Botnet AISURU botnet, known as AIRASHI

Black Myth: Wukong DDoS Attackers Return with New AIRASHI Botnet

Do Son January 21, 2025

The threat actors behind a series of distributed denial-of-service (DDoS) attacks targeting the distribution platforms of the...

ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection

Do Son January 21, 2025

The AhnLab Security Intelligence Center (ASEC) warns a novel malware distribution tactic involving the use of Microsoft...

Homebrew Phishing Site Appears in Google Search, Raising Concerns

Do Son January 21, 2025

In a recent discovery, a phishing website targeting Homebrew, an open-source package manager for macOS, was found...

Top 3 Malware Targeting Businesses in the Last 12 Months Top Malware

Top 3 Malware Targeting Businesses in the Last 12 Months

Do Son January 21, 2025

The cybersecurity trends are constantly shifting, and 2024 was no exception. Attackers found new ways to target...

Gootloader Malware Expands Its Reach with Advanced Social Engineering and SEO Poisoning

Do Son January 20, 2025

Sophos X-Ops has released an in-depth analysis of the notorious Gootloader malware family, highlighting its use of...

MintsLoader Campaign Targets Critical Sectors with Sophisticated Malware Delivery StealC operator panel

MintsLoader Campaign Targets Critical Sectors with Sophisticated Malware Delivery

Do Son January 20, 2025

The eSentire Threat Response Unit (TRU) has uncovered a new malware campaign leveraging a tool called MintsLoader...

Silver Fox APT Targets Organizations with PNGPlug and ValleyRAT Malware WHILL Wheelchair Hijacking, CVE-2025-14346 MAS typosquatting malware, get.activate.win vs get.activated.win OpenShift GitOps RCE, Cluster Takeover Flaw Twonky Server, CVE-2025-13315 AI agents CVE-2024-52875 PoC

WHILL Wheelchair Hijacking, CVE-2025-14346 MAS typosquatting malware, get.activate.win vs get.activated.win OpenShift GitOps RCE, Cluster Takeover Flaw Twonky Server, CVE-2025-13315 AI agents CVE-2024-52875 PoC

Silver Fox APT Targets Organizations with PNGPlug and ValleyRAT Malware

Do Son January 20, 2025

A sophisticated cyber-espionage campaign targeting organizations across China, Hong Kong, and Taiwan has been uncovered by Intezer’s...

Malicious PyPI Package Targets Discord Developers with Token Theft and Backdoor Exploit Malicious Discord PyPI Package

Malicious PyPI Package Targets Discord Developers with Token Theft and Backdoor Exploit

Do Son January 19, 2025

The Socket research team has identified a malicious Python package on PyPI named pycord-self, targeting developers working...

Black Basta Exploits Microsoft Teams for Phishing Attacks SloppyLemming

Black Basta Exploits Microsoft Teams for Phishing Attacks

Do Son January 19, 2025

NVISO Labs has uncovered a sophisticated phishing campaign attributed to the ransomware group Black Basta, leveraging Microsoft...

IoT Botnet Fuels Large-Scale DDoS Attacks Targeting Global Organizations

Do Son January 19, 2025

A newly discovered IoT botnet has been linked to a series of large-scale distributed denial-of-service (DDoS) attacks...

Lazarus APT Targets Job Seekers with “Contagious Interview” Campaign Using ClickFix Technique Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Lazarus APT Targets Job Seekers with “Contagious Interview” Campaign Using ClickFix Technique

Do Son January 18, 2025

North Korea’s notorious Lazarus APT group has been observed employing advanced social engineering tactics in a campaign...

“PlugX” Malware Deleted from Thousands of Computers in Global Operation Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware