Malware-as-a-Service Archives • Page 2 of 3 • Daily CyberSecurity

GRU Unit 29155 Uses SocGholish to Target US Firm RomCom, SocGholish

GRU Unit 29155 Uses SocGholish to Target US Firm

Do Son November 26, 2025

In a significant escalation of the cyber threat landscape, Arctic Wolf Labs has identified a campaign where...

Stealth Stealer: PhantomVAI Loader Uses Steganography in Images to Inject Katz Stealer and Evade Sandboxes

Do Son October 16, 2025

Researchers from Palo Alto Networks’ Unit 42 have uncovered a multi-stage phishing campaign delivering a new stealthy...

New Stealit Infostealer Abuses Node.js SEA Feature and Telegram C2 in Malware-as-a-Service Campaign Stealit Node.js SEA, Telegram C2

New Stealit Infostealer Abuses Node.js SEA Feature and Telegram C2 in Malware-as-a-Service Campaign

Do Son October 13, 2025

FortiGuard Labs has identified a new and active Stealit malware campaign that abuses the Node.js Single Executable...

HijackLoader: The Stealthy Malware Loader Powering Modern Cyberattacks Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

HijackLoader: The Stealthy Malware Loader Powering Modern Cyberattacks

Do Son September 16, 2025

Cybercriminals are increasingly relying on malware loaders to gain initial access, evade defenses, and deliver sophisticated payloads....

CastleBot: The New MaaS Framework Fueling Info-Stealer & Ransomware Attacks CastleBot, Malware-as-a-Service

CastleBot: The New MaaS Framework Fueling Info-Stealer & Ransomware Attacks

Do Son August 11, 2025

IBM X-Force has unveiled an in-depth analysis of CastleBot, a newly emerging Malware-as-a-Service (MaaS) framework that is...

The SocGholish Malware Economy: Stealthy “Fake Updates” Fuel a Global Cybercrime Ecosystem SocGholish, Initial Access Broker

The SocGholish Malware Economy: Stealthy “Fake Updates” Fuel a Global Cybercrime Ecosystem

Do Son August 8, 2025

Silent Push Threat Analysts have detailed one of today’s most pervasive cyber threats—SocGholish—exposing its deep ties to...

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational” NOVABLIGHT, Infostealer MaaS

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational”

Do Son July 31, 2025

Elastic Security Labs has exposed the inner workings of NOVABLIGHT, a highly modular, NodeJS-based Malware-as-a-Service (MaaS) information...

Raven Stealer: New MaaS Infostealer Plunders Data via Reflective Process Hollowing & Telegram Exfil Raven Stealer, MaaS Infostealer

Raven Stealer: New MaaS Infostealer Plunders Data via Reflective Process Hollowing & Telegram Exfil

Do Son July 30, 2025

A recent in-depth analysis from Cyfirma has shed light on the alarming capabilities of Raven Stealer, a...

Cyber Stealer: New Infostealer-Botnet Hybrid Offers Full Digital Plunder as a Service Cyber Stealer, Infostealer-Botnet

Cyber Stealer: New Infostealer-Botnet Hybrid Offers Full Digital Plunder as a Service

Do Son July 28, 2025

The eSentire’s Threat Response Unit (TRU) has uncovered a rapidly evolving malware platform called Cyber Stealer—a full-fledged...

Katz Stealer: The $100/Month MaaS Threat Plundering Digital Identities Undetected Katz Stealer, Info-Stealer MaaS

Katz Stealer: The $100/Month MaaS Threat Plundering Digital Identities Undetected

Do Son July 21, 2025

In the crowded arena of information-stealing malware, Katz Stealer is quickly establishing itself as one of the...

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories GitHub MaaS, Emmenhtal Loader

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories

Do Son July 18, 2025

Cisco Talos has uncovered a multi-pronged Malware-as-a-Service (MaaS) operation exploiting public GitHub repositories to distribute a wide...

AntiDot Android Trojan: New MaaS Malware Records Screens, Intercepts SMS, & Steals Financial Data Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

AntiDot Android Trojan: New MaaS Malware Records Screens, Intercepts SMS, & Steals Financial Data

Do Son June 20, 2025

The Swiss cybersecurity firm PRODAFT has unveiled detailed findings regarding a widespread malicious campaign involving an Android...

Amatera Stealer Unveiled: Rebranded ACR Stealer Now More Evasive, Targeting Your Data Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Amatera Stealer Unveiled: Rebranded ACR Stealer Now More Evasive, Targeting Your Data

Do Son June 20, 2025

According to a new report from Proofpoint, a previously known threat, ACR Stealer, has been reborn under...

Katz Stealer: New Stealthy MaaS Steals Everything, Hides in Images, and Hijacks Discord

Do Son June 16, 2025

In 2025, cybersecurity analysts witnessed the emergence of a sophisticated and highly evasive info-stealer known as Katz...

“DanaBleed” Flaw Exposes DanaBot’s Inner Workings for Three Years

Do Son June 11, 2025

DanaBot—an infamous Malware-as-a-Service (MaaS) operation—unwittingly sabotaged itself with a memory leak flaw eerily reminiscent of the infamous...

AI Tools Turn Trojan: Fake Video Platforms Drop Noodlophile Stealer and XWorm Payloads

Do Son May 13, 2025

Cybercriminals are now hijacking the hype surrounding AI to deliver sophisticated malware, as revealed in a new...

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks super

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks

Do Son April 22, 2025

The Cleafy Threat Intelligence team has uncovered a new and sophisticated Android malware campaign, dubbed ‘SuperCard X,’...

LummaStealer: The Evolution of a Sophisticated MaaS LummaStealer, Malware-as-a-Service

LummaStealer: The Evolution of a Sophisticated MaaS

Do Son April 17, 2025

Once a rising name in the stealer malware scene, LummaStealer has now evolved into one of the...

LummaStealer Expands Attack Surface with Fake Booking Sites and CAPTCHA Tricks LummaStealer Attack

LummaStealer Expands Attack Surface with Fake Booking Sites and CAPTCHA Tricks

Do Son March 4, 2025

In a concerning evolution of malvertising tactics, threat actors have begun using fake booking websites to distribute...

MintsLoader Campaign Targets Critical Sectors with Sophisticated Malware Delivery StealC operator panel

MintsLoader Campaign Targets Critical Sectors with Sophisticated Malware Delivery

Do Son January 20, 2025

The eSentire Threat Response Unit (TRU) has uncovered a new malware campaign leveraging a tool called MintsLoader...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

Malware-as-a-Service

GRU Unit 29155 Uses SocGholish to Target US Firm

Stealth Stealer: PhantomVAI Loader Uses Steganography in Images to Inject Katz Stealer and Evade Sandboxes

New Stealit Infostealer Abuses Node.js SEA Feature and Telegram C2 in Malware-as-a-Service Campaign

HijackLoader: The Stealthy Malware Loader Powering Modern Cyberattacks

CastleBot: The New MaaS Framework Fueling Info-Stealer & Ransomware Attacks

The SocGholish Malware Economy: Stealthy “Fake Updates” Fuel a Global Cybercrime Ecosystem

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational”

Raven Stealer: New MaaS Infostealer Plunders Data via Reflective Process Hollowing & Telegram Exfil

Cyber Stealer: New Infostealer-Botnet Hybrid Offers Full Digital Plunder as a Service

Katz Stealer: The $100/Month MaaS Threat Plundering Digital Identities Undetected

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories

AntiDot Android Trojan: New MaaS Malware Records Screens, Intercepts SMS, & Steals Financial Data

Amatera Stealer Unveiled: Rebranded ACR Stealer Now More Evasive, Targeting Your Data

Katz Stealer: New Stealthy MaaS Steals Everything, Hides in Images, and Hijacks Discord

“DanaBleed” Flaw Exposes DanaBot’s Inner Workings for Three Years

AI Tools Turn Trojan: Fake Video Platforms Drop Noodlophile Stealer and XWorm Payloads

SuperCard X: Android Malware Steals Cards via NFC Relay Attacks

LummaStealer: The Evolution of a Sophisticated MaaS

LummaStealer Expands Attack Surface with Fake Booking Sites and CAPTCHA Tricks

MintsLoader Campaign Targets Critical Sectors with Sophisticated Malware Delivery