malware Archives • Page 11 of 28 • Daily CyberSecurity

Inside the “Traffer” Economy: How a Thriving Cybercrime Ecosystem Professionalized Data Theft SEO

Inside the “Traffer” Economy: How a Thriving Cybercrime Ecosystem Professionalized Data Theft

Ddos August 21, 2025

The global cybercrime economy continues to expand, with new players and organizational structures emerging to maximize profits...

How Attackers Exploit and Then Patch a Vulnerability to Hide in Linux Systems Apache ActiveMQ, self-patching malware

How Attackers Exploit and Then Patch a Vulnerability to Hide in Linux Systems

Ddos August 21, 2025

Red Canary has revealed a sophisticated attack campaign targeting cloud-based Linux systems through a critical remote code...

A Trojan in Disguise: New Python Package on PyPI Hides a Multi-Stage Malware Operation Supply chain attack

A Trojan in Disguise: New Python Package on PyPI Hides a Multi-Stage Malware Operation

Ddos August 21, 2025

Zscaler’s ThreatLabz team has issued a warning after uncovering a malicious Python package on the Python Package...

Spies in Your Skype: GodRAT Malware Uses Steganography to Target Financial Firms Cyber-espionage, GodRAT

Spies in Your Skype: GodRAT Malware Uses Steganography to Target Financial Firms

Ddos August 20, 2025

Kaspersky Labs has identified a sophisticated cyber-espionage campaign targeting financial institutions, particularly trading and brokerage firms, through...

A ChatGPT App Is Hiding a Backdoor: Microsoft Exposes the PipeMagic Malware PipeMagic, Ransomware

A ChatGPT App Is Hiding a Backdoor: Microsoft Exposes the PipeMagic Malware

Ddos August 20, 2025

Microsoft Threat Intelligence has uncovered PipeMagic, a sophisticated modular backdoor used by the financially motivated threat actor...

Beyond AI Lures: Noodlophile Stealer Evolves with Stealthy Copyright Phishing Infostealer, Noodlophile

Beyond AI Lures: Noodlophile Stealer Evolves with Stealthy Copyright Phishing

Ddos August 20, 2025

The Noodlophile Stealer, a malware family first exposed for distributing through fake AI video-generation platforms, has resurfaced...

“Lazarus Stealer”: A New Android Trojan Is Stealing Financial Data from Russian Banks Android malware, banking trojan Lazarus Stealer

“Lazarus Stealer”: A New Android Trojan Is Stealing Financial Data from Russian Banks

Ddos August 20, 2025

A new CYFIRMA report has revealed the discovery of Lazarus Stealer, a highly sophisticated Android malware designed...

PipeMagic Returns: Kaspersky Uncovers Evolving Backdoor Linked to CVE-2025-29824 Exploits Backdoor, PipeMagic CVE-2025-29824

PipeMagic Returns: Kaspersky Uncovers Evolving Backdoor Linked to CVE-2025-29824 Exploits

Ddos August 19, 2025

Kaspersky Labs has released a new report shedding light on the persistent threat posed by PipeMagic, a...

CrossC2 and ReadNimeLoader: Inside the Multi-Stage Intrusions Targeting Linux and Windows Environments Cross-platform attacks, Cobalt Strike

CrossC2 and ReadNimeLoader: Inside the Multi-Stage Intrusions Targeting Linux and Windows Environments

Ddos August 18, 2025

Between September and December 2024, JPCERT/CC uncovered a sophisticated cyber campaign leveraging CrossC2, an extension tool designed...

REVENANT: The Experimental Framework That Infects AI Models and Evades Traditional Defenses Experimental attack framework, AI security

REVENANT: The Experimental Framework That Infects AI Models and Evades Traditional Defenses

Ddos August 18, 2025

In a new report, CYFIRMA has detailed an experimental attack framework called REVENANT, which demonstrates how adversaries...

Dodi Repacks Malware: Why Your Adblocker Won’t Save You Battlefield 6 Malware, Fake Game Cracks

Dodi Repacks Malware: Why Your Adblocker Won’t Save You

Ddos August 18, 2025

Pirated games have long been a risky endeavor, but recent research from Trellix reveals just how dangerous...

Phishing Attack on Popular npm Package Triggers Supply Chain Compromise npm supply chain, phishing attack

Phishing Attack on Popular npm Package Triggers Supply Chain Compromise

Ddos August 16, 2025

A recent investigation by ReversingLabs has revealed how a targeted phishing attack led to the compromise of...

A New Threat: Unmasking Crypto24 Ransomware’s Stealthy Toolkit INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

A New Threat: Unmasking Crypto24 Ransomware’s Stealthy Toolkit

Ddos August 15, 2025

Trend Micro’s latest research sheds light on Crypto24, a highly coordinated ransomware operation that blends legitimate administrative...

An Ethereum Dev’s Wallet Drained by a Fake AI Extension Crypto Drain Conspiracy, Malicious MobileConfig phone phishing Cryptocurrency Phishing

Crypto Drain Conspiracy, Malicious MobileConfig phone phishing Cryptocurrency Phishing

An Ethereum Dev’s Wallet Drained by a Fake AI Extension

Ddos August 15, 2025

It turns out that even seasoned professionals are not entirely immune to the deceptive tactics of phishing...

A Blast from the Past: Why a 2017 Office Flaw Still Haunts Enterprises Today Microsoft Office, CVE-2017-11882

A Blast from the Past: Why a 2017 Office Flaw Still Haunts Enterprises Today

Ddos August 15, 2025

Under normal circumstances, software developers recommend that users promptly update to the latest version after a release....

“Curly COMrades” Group Unmasked: Russian Threat Actors Deploy New Backdoor in Geopolitical Espionage Campaign Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

“Curly COMrades” Group Unmasked: Russian Threat Actors Deploy New Backdoor in Geopolitical Espionage Campaign

Ddos August 14, 2025

Bitdefender Labs has uncovered a new cyber-espionage group, dubbed “Curly COMrades”, believed to operate in support of...

PS1Bot Malware Campaign Unleashes Modular PowerShell Framework with Stealthy New Tricks ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

PS1Bot Malware Campaign Unleashes Modular PowerShell Framework with Stealthy New Tricks

Ddos August 14, 2025

Cisco Talos has uncovered an ongoing and highly active malware campaign deploying a sophisticated, modular framework dubbed...

Unmasking VexTrio: A 15-Year Cybercrime Empire of Scams, Spam, and Fake Apps VexTrio, cybercrime syndicate

Unmasking VexTrio: A 15-Year Cybercrime Empire of Scams, Spam, and Fake Apps

Ddos August 14, 2025

In a detailed investigation, Infoblox Threat Intel has unmasked VexTrio as a sprawling cybercriminal network whose operations...

GitHub Malware Campaign: SmartLoader Poses as Game Cheats to Steal Data SmartLoader, Malware

GitHub Malware Campaign: SmartLoader Poses as Game Cheats to Steal Data

Ddos August 13, 2025

The AhnLab SEcurity intelligence Center (ASEC) has uncovered a large-scale malware distribution campaign leveraging GitHub to spread...

Efimer Trojan: New Crypto-Stealer Hijacks Wallets via Fake Legal Threats & Malicious Torrents Efimer Trojan, Crypto Hijacking

Efimer Trojan: New Crypto-Stealer Hijacks Wallets via Fake Legal Threats & Malicious Torrents

Ddos August 11, 2025

Kaspersky Labs has uncovered a sophisticated, multi-pronged malware operation leveraging fake legal threats, compromised WordPress sites, and...

Critical Alert 2 Active Exploits Detected Today