Cybercrime Archives • Page 5 of 12 • Daily CyberSecurity

AISURU Botnet: From Record-Breaking DDoS to Residential Proxy Empire CVE-2024-22394

AISURU Botnet: From Record-Breaking DDoS to Residential Proxy Empire

Ddos September 17, 2025

The AISURU botnet, first disclosed by XLab in 2024, has rapidly become one of the most dangerous...

Maranhão Stealer: A New Malware Hijacks Gamers’ PCs Through Pirated Games Cobalt Strike Evade Detection

Maranhão Stealer: A New Malware Hijacks Gamers’ PCs Through Pirated Games

Ddos September 16, 2025

The Cyble Research and Intelligence Labs (CRIL) has uncovered an active campaign distributing a new information-stealing malware...

Yurei: The New Ransomware Group Using Open-Source Code to Target Businesses Yurei ransomware, open-source malware

Yurei: The New Ransomware Group Using Open-Source Code to Target Businesses

Ddos September 16, 2025

Recently, researchers at Check Point Research (CPR) identified a new ransomware group calling itself Yurei—a name inspired...

A Digital Trojan Horse: A New Campaign Is Using SEO to Deliver Malware SEO poisoning, Hiddengh0st

A Digital Trojan Horse: A New Campaign Is Using SEO to Deliver Malware

Ddos September 16, 2025

Researchers at FortiGuard Labs have uncovered a sophisticated SEO poisoning campaign aimed at Chinese-speaking users. By manipulating...

Unveiling BaoLoader: How One Malware Family Abuses Trust for 7 Years BaoLoader, code-signing abuse

Unveiling BaoLoader: How One Malware Family Abuses Trust for 7 Years

Ddos September 15, 2025

Expel researchers have lifted the veil on a long-running malware operation abusing the global trust model of...

China-Aligned Hackers Unleash Upgraded Toneshell and New USB Worm China-aligned actor, Hive0154

China-Aligned Hackers Unleash Upgraded Toneshell and New USB Worm

Ddos September 15, 2025

IBM X-Force has published new findings on Hive0154, a China-aligned threat actor also tracked under names such...

EvilAI Malware Campaign Exploits Trust in AI Tools to Infiltrate Global Industries EvilAI, malware campaign

EvilAI Malware Campaign Exploits Trust in AI Tools to Infiltrate Global Industries

Ddos September 15, 2025

Trend Micro researchers have uncovered a sophisticated malware campaign dubbed EvilAI, which disguises itself as productivity and...

Meet ZynorRAT: The New Cross-Platform Malware Controlled via Telegram ZynorRAT, Telegram malware

Meet ZynorRAT: The New Cross-Platform Malware Controlled via Telegram

Ddos September 13, 2025

The Sysdig Threat Research Team (TRT) has discovered a new cross-platform Remote Access Trojan (RAT) dubbed ZynorRAT,...

BlackNevas Ransomware: A Persistent Global Threat With Impossible-to-Decrypt Payloads INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

BlackNevas Ransomware: A Persistent Global Threat With Impossible-to-Decrypt Payloads

Ddos September 12, 2025

AhnLab researchers have published a technical analysis of BlackNevas, a ransomware group that has been steadily launching...

kkRAT: A New Malware Blends Crypto Hijacking with Legitimate RMM Tools

Ddos September 12, 2025

Zscaler ThreatLabz has identified a sophisticated malware campaign active since early May 2025, targeting Chinese-speaking users with...

CyberVolk Ransomware’s Decryption Flaw Makes Data Recovery Impossible The created ransom note

CyberVolk Ransomware’s Decryption Flaw Makes Data Recovery Impossible

Ddos September 11, 2025

AhnLab researchers have released an in-depth technical analysis of the CyberVolk ransomware, a strain that has been...

KillSec Ransomware Strikes Brazilian Healthcare Provider, Exposing Patient Data

Ddos September 11, 2025

Resecurity has reported that KillSec ransomware has targeted MedicSolution, a key healthcare software provider in Brazil, compromising...

RatOn: The New Android Trojan That Steals Crypto and Uses NFC Relay Attacks RatOn, Android trojan

RatOn: The New Android Trojan That Steals Crypto and Uses NFC Relay Attacks

Ddos September 9, 2025

ThreatFabric has uncovered RatOn, a newly developed Android banking trojan that merges traditional overlay fraud with NFC...

Salat Stealer: A New Go-Based MaaS Is Hijacking Browsers and Crypto Wallets Salat Stealer, MaaS

Salat Stealer: A New Go-Based MaaS Is Hijacking Browsers and Crypto Wallets

Ddos September 9, 2025

CYFIRMA has released an in-depth analysis of Salat Stealer (also known as WEB_RAT), a sophisticated Go-based malware...

Malicious npm Packages Impersonate Flashbots SDKs to Steal Ethereum Wallet Credentials Ethereum, npm supply chain

Malicious npm Packages Impersonate Flashbots SDKs to Steal Ethereum Wallet Credentials

Ddos September 9, 2025

Socket’s Threat Research Team has uncovered a coordinated supply chain attack targeting the Ethereum ecosystem through four...

50,000 Emails a Day: How a Cloud Flaw Is Fueling Phishing Campaigns phishing-3390518_1280

50,000 Emails a Day: How a Cloud Flaw Is Fueling Phishing Campaigns

Ddos September 8, 2025

The Wiz Research team has revealed details of a May 2025 phishing campaign that weaponized Amazon Simple...

SentinelLABS Reveals How North Korean “Contagious Interview” Operators Abuse Threat Intel Platforms Lazarus Group, cyber threat intelligence

Lazarus Group, cyber threat intelligence

SentinelLABS Reveals How North Korean “Contagious Interview” Operators Abuse Threat Intel Platforms

Ddos September 5, 2025

The SentinelLABS intelligence team, in collaboration with Validin, has published an in-depth analysis of North Korean-aligned actors...

Beyond Simple Scripts: A New XWorm Campaign Uses Multi-Stage Stealth Caminho LSB Steganography, Loader-as-a-Service 2023 Threat Report

Beyond Simple Scripts: A New XWorm Campaign Uses Multi-Stage Stealth

Ddos September 5, 2025

Researchers at the Trellix Advanced Research Center have identified a sophisticated new campaign leveraging the XWorm backdoor,...

Stealerium: How an Open-Source Infostealer Is Being Used in Phishing Campaigns Stealerium, infostealer

Stealerium: How an Open-Source Infostealer Is Being Used in Phishing Campaigns

Ddos September 4, 2025

Proofpoint threat researchers have uncovered a surge in campaigns distributing Stealerium-based malware, an open-source infostealer first released...

DireWolf: The New Ransomware Group Targeting Global Businesses DireWolf execution flow

DireWolf: The New Ransomware Group Targeting Global Businesses

Ddos September 4, 2025

The DireWolf ransomware group, first emerging in May 2025, has rapidly evolved into a formidable cyber threat...

Critical Alert 2 Active Exploits Detected Today