malware Archives • Daily CyberSecurity

Google Uncovers UNC6508 Cyber Espionage Campaign Diagram showing UNC6508 cyber espionage attack flow and INFINITERED malware.

Google Uncovers UNC6508 Cyber Espionage Campaign

Do Son June 22, 2026

At a Glance Actor: UNC6508 (suspected PRC-nexus threat actor) Activity Type: Cyber espionage, bespoke malware deployment, data...

Malicious Steam Wallpapers Spread Malware to Gamers Malicious Steam wallpapers targeting the Wallpaper Engine app

Malicious Steam Wallpapers Spread Malware to Gamers

Do Son June 22, 2026

At a Glance Malware Family: Various (DarkKomet, infostealers, crypto miners) Threat Actor: Suspected multiple independent hacking groups...

ShapedPlugin Supply Chain Attack CVE-2026-10735, CVE-2026-49777, WordPress Plugin Malware

ShapedPlugin Supply Chain Attack Exposes WordPress Sites

Do Son June 16, 2026

A dangerous ShapedPlugin supply chain attack is currently threatening WordPress websites. Security researchers at Wordfence discovered this...

Inside the Stealthy Agent Tesla Infection Chain CVE-2023-24059

Inside the Stealthy Agent Tesla Infection Chain

Do Son June 16, 2026

What looks like a simple payment receipt attachment can sometimes be the start of something far more...

Sophisticated GPU Cryptojacking Campaign Surfaced by Microsoft Experts Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Sophisticated GPU Cryptojacking Campaign Surfaced by Microsoft Experts

Do Son June 1, 2026

Microsoft Defender Experts recently identified a highly targeted digital threat spreading across the internet. Specifically, a dangerous...

Twill Typhoon Exploits CDN Masquerading and DLL Sideloading to Breach APJ Networks Twill Typhoon DLL Sideloading

Twill Typhoon Exploits CDN Masquerading and DLL Sideloading to Breach APJ Networks

Do Son May 22, 2026

A sophisticated, highly targeted cyber-espionage campaign is actively penetrating corporate and critical infrastructure networks across the Asia-Pacific...

The “JobStealer” Trojan Hijacking Crypto Wallets via Fake Meetings JobStealer Trojan Crypto Wallet Theft

The “JobStealer” Trojan Hijacking Crypto Wallets via Fake Meetings

Do Son May 11, 2026

The job market is tough enough without a scheduled interview turning into a devastating cyber heist. According...

The Claude AI Trap: Sophos Uncovers Undocumented Backdoor Hiding in Fake “Pro” Lure Claude AI Malware DonutLoader Backdoor

The Claude AI Trap: Sophos Uncovers Undocumented Backdoor Hiding in Fake “Pro” Lure

Do Son May 11, 2026

As the popularity of generative AI tools soars, cybercriminals are increasingly capitalizing on the hype to deploy...

Trust Hijacked: Official JDownloader Website Breached to Distribute Malicious Installers JDownloader Breach Supply Chain Attack

Trust Hijacked: Official JDownloader Website Breached to Distribute Malicious Installers

Do Son May 9, 2026

When millions of users rely on a popular utility, the implicit trust placed in its official download...

Highly Evasive NuGet Supply Chain Attack Hijacks 65,000 .NET Build Servers NuGet Supply Chain Attack .NET Malware

Highly Evasive NuGet Supply Chain Attack Hijacks 65,000 .NET Build Servers

Do Son May 8, 2026

A highly sophisticated software supply chain attack has compromised tens of thousands of developer workstations and CI/CD...

OceanLotus Hijacks PyPI to Deploy “ZiChatBot” via Enterprise Chat APIs Acreed Infostealer, BNB Smart Chain CVE-2023-20269 exploit

OceanLotus Hijacks PyPI to Deploy “ZiChatBot” via Enterprise Chat APIs

Do Son May 7, 2026

In a calculated move that signals the expansion of state-sponsored threats into open-source repositories, researchers at Kaspersky...

Deceptive “DeepSeek-Claw” Skill Hijacks OpenClaw Agents to Steal Credentials OpenClaw Framework Malware DeepSeek-Claw AI Skill

Deceptive “DeepSeek-Claw” Skill Hijacks OpenClaw Agents to Steal Credentials

Do Son May 7, 2026

Security researchers at Zscaler ThreatLabz have uncovered a deceptive campaign targeting the OpenClaw framework—an open-source tool designed...

DAEMON Tools Supply Chain Attack QUIC RAT Malware

Trojanized Tools: DAEMON Tools Supply Chain Attack Compromises Global Systems

Do Son May 6, 2026

Kaspersky has uncovered a sophisticated supply chain attack targeting DAEMON Tools, the widely used disk imaging software....

Waking the Sleepers: The BufferZoneCorp Campaign Poisoning Ruby and Go Ecosystems

Do Son May 2, 2026

Security researchers at Socket have uncovered a coordinated software supply chain campaign orchestrated through the GitHub account...

The Fall of Versus: Dark Web Mastermind Extradited to the US to Face Life Behind Bars Versus Project Dark Web Extradition

The Fall of Versus: Dark Web Mastermind Extradited to the US to Face Life Behind Bars

Do Son May 2, 2026

A German national has been extradited from Colombia to the United States to face charges for owning...

AI’s Supply Chain Nightmare: The Lightning Framework Worm and the “Silence Developer” Meme Lightning Framework Attack TEAM PCP Supply Chain

AI’s Supply Chain Nightmare: The Lightning Framework Worm and the “Silence Developer” Meme

Do Son May 2, 2026

In a high-impact escalation of software supply chain attacks, security researchers have identified a major compromise of...

Single Actor Bypassed Open VSX Security with “Disposable” Tools Open VSX Malware String-Fragment Reconstruction DarkCloud Stealer, steganography APT 35 Charming Kitten cyclops

Open VSX Malware String-Fragment Reconstruction DarkCloud Stealer, steganography APT 35 Charming Kitten cyclops

Single Actor Bypassed Open VSX Security with “Disposable” Tools

Do Son May 1, 2026

Security researchers at Yeeth Security have uncovered a sophisticated campaign on the Open VSX marketplace, where a...

The Malware Factory: Unmasking the 108-Package North Korean Siege on npm npm Supply Chain Attack DPRK Malware Factory

The Malware Factory: Unmasking the 108-Package North Korean Siege on npm

Do Son April 29, 2026

Cybersecurity researchers at Panther Threat Research have released a detailed exposé on a massive, coordinated npm malware...

Inside the Stealthy Evolution of Vidar Infostealer Vidar Infostealer Stealth Attack Framework

Inside the Stealthy Evolution of Vidar Infostealer

Do Son April 28, 2026

Vidar, once a straightforward credential stealer, has officially completed its transformation into a “multi-stage, stealth-driven attack framework”....

Attackers Are Weaponizing Foxit PDF Reader’s Reputation Foxit PDF Malware UltraVNC Hijack

Attackers Are Weaponizing Foxit PDF Reader’s Reputation

Do Son April 28, 2026

A recent report from G DATA highlights a sophisticated campaign targeting users of Foxit Software, a popular...