Discord Archives • Daily CyberSecurity

Foxveil: New Malware Loader Hides in Plain Sight Using Cloudflare and Discord Foxveil Malware

Foxveil: New Malware Loader Hides in Plain Sight Using Cloudflare and Discord

Do Son February 17, 2026

A new and elusive malware loader has been discovered prowling the legitimate infrastructure of the web, abusing...

The Invisible Predator: How VVS Stealer Abuses Pyarmor to Ghost Discord Accounts VVS Stealer, Pyarmor Obfuscation

The Invisible Predator: How VVS Stealer Abuses Pyarmor to Ghost Discord Accounts

Do Son January 5, 2026

A new, highly sophisticated malware strain is making the rounds on the cybercrime underground, targeting the massive...

Russian Tomiris APT Adopts “Polyglot” Strategy, Hijacking Telegram/Discord as Covert C2 for Diplomatic Spies

Do Son December 1, 2025

A notorious threat actor known as “Tomiris” has returned with a revamped arsenal, launching a focused campaign...

Stealth C2: Hackers Abuse Discord Webhooks for Covert Data Exfiltration in npm, PyPI, and RubyGems Supply Chain Attacks SolyxImmortal Malware Python Info-Stealer Discord Webhook C2, Supply Chain Abuse

SolyxImmortal Malware Python Info-Stealer Discord Webhook C2, Supply Chain Abuse

Stealth C2: Hackers Abuse Discord Webhooks for Covert Data Exfiltration in npm, PyPI, and RubyGems Supply Chain Attacks

Do Son October 14, 2025

The Socket Threat Research Team has uncovered a growing trend among malicious package developers: leveraging Discord webhooks...

New Rust Backdoor ChaosBot Uses Discord as Covert C2 Channel to Target Financial Services ChaosBot Discord C2, Rust Backdoor

New Rust Backdoor ChaosBot Uses Discord as Covert C2 Channel to Target Financial Services

Do Son October 13, 2025

The eSentire Threat Response Unit (TRU) identified a new Rust-based backdoor—dubbed ChaosBot—deployed inside a financial services organization’s...

New LNK Malware Uses Windows LOLBins to Evade Detection Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

New LNK Malware Uses Windows LOLBins to Evade Detection

Do Son September 25, 2025

Researchers at K7 Security Labs have uncovered a new wave of Windows shortcut (.LNK) malware that exploits...

Inf0s3c Stealer: A Stealthy Python Malware Is Abusing Discord to Steal Data Inf0s3c Stealer, Windows malware

Inf0s3c Stealer: A Stealthy Python Malware Is Abusing Discord to Steal Data

Do Son September 3, 2025

Cyfirma’s Threat Intelligence team has released a technical analysis of Inf0s3c Stealer, a Python-based information grabber designed...

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational” NOVABLIGHT, Infostealer MaaS

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational”

Do Son July 31, 2025

Elastic Security Labs has exposed the inner workings of NOVABLIGHT, a highly modular, NodeJS-based Malware-as-a-Service (MaaS) information...

SVF Botnet: New Python DDoS Threat Leverages Discord for Stealthy C&C on Linux Servers Linux Botnet Discord C2

SVF Botnet: New Python DDoS Threat Leverages Discord for Stealthy C&C on Linux Servers

Do Son July 22, 2025

In a recent analysis, AhnLab’s Security Intelligence Center (ASEC) has uncovered an emerging threat targeting misconfigured and...

Discord Invite System Hijacked: Expired Links Now Lead to Crypto-Stealing Malware

Do Son June 15, 2025

In the latest expose from Check Point Research, Discord’s once-trusted invite system has been turned against its...

Beware Katz Stealer: Sophisticated Malware-as-a-Service Steals Everything

Do Son May 29, 2025

A newly analyzed variant of the Katz Stealer malware has been dissected by the Nextron Threat Research...

PupkinStealer: Tiny Malware, Big Theft via Telegram Bot Exposed PupkinStealer, Telegram malware

PupkinStealer: Tiny Malware, Big Theft via Telegram Bot Exposed

Do Son May 13, 2025

CYFIRMA researchers have revealed a new .NET-based information stealer called PupkinStealer, a lightweight but highly targeted malware...

Inferno Drainer Steals Millions in Evolving Crypto Attacks axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

Inferno Drainer Steals Millions in Evolving Crypto Attacks

Do Son May 8, 2025

A new report by Check Point Research reveals the resurgence and evolution of Inferno Drainer, a player...

Discord Used as C2 for Stealthy Python-Based RAT Discord RAT, Python malware

Discord Used as C2 for Stealthy Python-Based RAT

Do Son April 29, 2025

In a detailed report by Cyfirma, researchers have uncovered a Python-based Remote Access Trojan (RAT) that leverages...

Warning: Discord’s API Exploited for Malicious Takeover Discord RAT

Warning: Discord’s API Exploited for Malicious Takeover

Do Son March 31, 2025

A new report from CYFIRMA reveals that cybercriminals are increasingly exploiting Discord, the popular communication and gaming...

Microsoft Uncovers Massive Malvertising Campaign Distributing Info Stealers via GitHub

Do Son March 9, 2025

In early December 2024, Microsoft Threat Intelligence uncovered a large-scale malvertising campaign that infected nearly one million...

Robust Open Online Safety Tools (ROOST): Tech Giants Unite to Build AI-Era Security Infrastructure "ROOST" Robust Open Online Safety Tools

Robust Open Online Safety Tools (ROOST): Tech Giants Unite to Build AI-Era Security Infrastructure

Do Son February 11, 2025

Roblox, Discord, OpenAI, and Google have announced the formation of a non-profit organization called “ROOST” (Robust Open...

Signal and Discord Vulnerabilities Exposed: 0-Click Deanonymization Attack Revealed deanonymization attack - cache geolocation attack

Signal and Discord Vulnerabilities Exposed: 0-Click Deanonymization Attack Revealed

Do Son January 22, 2025

Security researcher Daniel, also known as hackermondev, has revealed an 0-click deanonymization attack capable of exposing user...

Malicious PyPI Package Targets Discord Developers with Token Theft and Backdoor Exploit Malicious Discord PyPI Package

Malicious PyPI Package Targets Discord Developers with Token Theft and Backdoor Exploit

Do Son January 19, 2025

The Socket research team has identified a malicious Python package on PyPI named pycord-self, targeting developers working...

PyPI Poisoned: “Zebo” and “Cometlogger” Downloaded Hundreds of Times GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

PyPI Poisoned: “Zebo” and “Cometlogger” Downloaded Hundreds of Times

Do Son December 25, 2024

Cybersecurity researchers at Fortinet have uncovered two malicious packages slithering within the Python Package Index (PyPI), ready...

Critical Alert 1 Active Exploit Detected Today