information stealer Archives • Daily CyberSecurity

SolyxImmortal Info Stealer Exploits Systems via Discord SolyxImmortal info stealer Discord webhooks

SolyxImmortal Info Stealer Exploits Systems via Discord

Do Son May 31, 2026

Security researchers recently discovered a highly dangerous new asset targeting worldwide internet users. Specifically, the SolyxImmortal info...

The Evolution of an Infostealer: Xloader 8.7 Unmasked Xloader Malware Information Stealer Phantom Stealer v3.5.0 DLL Sideloading Attack

The Evolution of an Infostealer: Xloader 8.7 Unmasked

Do Son April 7, 2026

ThreatLabz has released a deep-dive analysis into the latest iterations of Xloader, a notorious information-stealing malware that...

SantaStealer Unwrapped: New MaaS Info-Stealer Rebrands Blueline to Steal Crypto and Credentials SantaStealer MaaS, Blueline Rebrand

SantaStealer Unwrapped: New MaaS Info-Stealer Rebrands Blueline to Steal Crypto and Credentials

Do Son December 17, 2025

As the 2025 holiday season approaches, cybercriminals are unwrapping a new tool designed to spoil the festivities....

Phantom Stealer Targets Russian Finance with ISO Phishing, Deploying Keyloggers and Crypto-Wallet Theft Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Phantom Stealer Targets Russian Finance with ISO Phishing, Deploying Keyloggers and Crypto-Wallet Theft

Do Son December 16, 2025

A sophisticated new phishing campaign is targeting the heart of Russia’s financial infrastructure, disguising a potent information-stealing...

Itch.io Targeted: Lumma Stealer Deployed Via Fake Updates and Reflective Node.js Loader Itch.io Lumma Stealer, Reflective Node.js Loader

Itch.io Targeted: Lumma Stealer Deployed Via Fake Updates and Reflective Node.js Loader

Do Son December 10, 2025

A sophisticated malware campaign has infiltrated the indie gaming platform Itch.io, using deceptive “game update” lures to...

Operation Hanoi Thief: Hackers Use ‘Pseudo-Polyglot’ LNK/Image to Deploy LOTUSHARVEST Stealer via DLL Sideloading LOTUSHARVEST Stealer, Pseudo-Polyglot LNK

LOTUSHARVEST Stealer, Pseudo-Polyglot LNK

Operation Hanoi Thief: Hackers Use ‘Pseudo-Polyglot’ LNK/Image to Deploy LOTUSHARVEST Stealer via DLL Sideloading

Do Son December 1, 2025

A sophisticated new cyber-espionage campaign is sweeping through Vietnam’s technology and recruitment sectors, weaponizing the hiring process...

XillenStealer: New Open-Source Malware Lowers Cybercrime Barrier XillenStealer, open-source malware

XillenStealer: New Open-Source Malware Lowers Cybercrime Barrier

Do Son September 19, 2025

CYFIRMA has released a detailed threat intelligence assessment of XillenStealer, an emerging open-source, Python-based malware family that...

Raven Stealer: A Stealthy New Threat in the Malware Ecosystem Raven Stealer, Malware

Raven Stealer: A Stealthy New Threat in the Malware Ecosystem

Do Son September 18, 2025

Raven Stealer, a new entrant in the commodity malware ecosystem, is emerging as a stealthy yet powerful...

Dodi Repacks Malware: Why Your Adblocker Won’t Save You Battlefield 6 Malware, Fake Game Cracks

Dodi Repacks Malware: Why Your Adblocker Won’t Save You

Do Son August 18, 2025

Pirated games have long been a risky endeavor, but recent research from Trellix reveals just how dangerous...

PS1Bot Malware Campaign Unleashes Modular PowerShell Framework with Stealthy New Tricks ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

PS1Bot Malware Campaign Unleashes Modular PowerShell Framework with Stealthy New Tricks

Do Son August 14, 2025

Cisco Talos has uncovered an ongoing and highly active malware campaign deploying a sophisticated, modular framework dubbed...

Massive Data Leak: Hacker Allegedly Selling 16 Billion Login Credentials from Major Tech Giants Login Credentials, Data Leak CVE-2024-47191 - OATH-Toolkit

Login Credentials, Data Leak CVE-2024-47191 - OATH-Toolkit

Massive Data Leak: Hacker Allegedly Selling 16 Billion Login Credentials from Major Tech Giants

Do Son June 20, 2025

Since yesterday, reports of a hacker allegedly selling a staggering 16 billion sets of login credentials have...

HelloTDS Unmasked: Covert Traffic System Funnels Millions to FakeCaptcha Malware!

Do Son June 13, 2025

A complex and evasive infrastructure dubbed HelloTDS is silently steering millions of internet users into the clutches...

Interpol & Asian Agencies Dismantle Major Malware Infrastructure: 20,000 Malicious IPs Blocked Malware Takedown, Interpol

Interpol & Asian Agencies Dismantle Major Malware Infrastructure: 20,000 Malicious IPs Blocked

Do Son June 12, 2025

Interpol recently disclosed the success of a coordinated operation targeting information-stealing malware, carried out in collaboration with...

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector ClickFix Phishing, Booking.com Scam

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector

Do Son June 6, 2025

According to Cofense Intelligence, a sophisticated and evolving phishing campaign is using spoofed Booking.com emails and fake...

Lumma Stealer: Unpacking Its Evasive Tactics and Complex Infection Chains Lumma Stealer Malware Distribution

Lumma Stealer: Unpacking Its Evasive Tactics and Complex Infection Chains

Do Son April 23, 2025

The cybercriminal landscape is constantly evolving, with Malware-as-a-Service (MaaS) lowering the bar for entry and information stealers...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Beware Fake PDF Converters: A Social Engineering Threat

Do Son April 16, 2025

In today’s digital age, online file converters have become indispensable tools for streamlining daily workflows. However, a...

GOFFEE APT: New PowerModul Implant and Tactics Target Russian Organizations GOFFEE APT Russian cyberattacks

GOFFEE APT: New PowerModul Implant and Tactics Target Russian Organizations

Do Son April 14, 2025

The APT group GOFFEE has resurfaced with a revamped arsenal, launching targeted cyberattacks across Russia’s strategic sectors....

Vidar Stealer Hides in Legitimate BGInfo Tool Vidar Stealer, malware, BGInfo

Vidar Stealer Hides in Legitimate BGInfo Tool

Do Son April 9, 2025

Vidar Stealer, a notorious information-stealing malware that first emerged in 2018, continues to pose a significant threat...

Critical Alert 1 Active Exploit Detected Today