malware Archives • Page 12 of 28 • Daily CyberSecurity

GreedyBear Unmasked: How Stealthy Firefox Extensions and Fake Sites Stole $1M in Crypto GreedyBear, Cryptocurrency Theft

GreedyBear Unmasked: How Stealthy Firefox Extensions and Fake Sites Stole $1M in Crypto

Ddos August 11, 2025

Koi Security’s research team has unveiled GreedyBear, a threat group orchestrating industrial-scale cryptocurrency theft through a seamless...

ScarCruft APT Deploys VCD Ransomware, Uses PubNub & New Malware in Espionage Campaign North Korea APT, PubNub Abuse

ScarCruft APT Deploys VCD Ransomware, Uses PubNub & New Malware in Espionage Campaign

Ddos August 11, 2025

S2W’s Threat Analysis and Intelligence Center (TALON) has uncovered a sophisticated malware campaign attributed to the North...

WinRAR Update: Zero-Day Path Traversal Flaw (CVE-2025-8088) Actively Exploited to Deliver Malware WinRAR Zero-Day, Path Traversal CVE-2025-8088

WinRAR Update: Zero-Day Path Traversal Flaw (CVE-2025-8088) Actively Exploited to Deliver Malware

Ddos August 11, 2025

Security researchers at ESET have uncovered a zero-day path traversal vulnerability in the Windows version of WinRAR...

DarkCloud Rises: New Fileless Stealer Uses PowerShell & Process Hollowing to Evade Detection DarkCloud Stealer, Fileless Malware

DarkCloud Rises: New Fileless Stealer Uses PowerShell & Process Hollowing to Evade Detection

Ddos August 11, 2025

Researchers from Fortinet’s FortiGuard Labs detected a new DarkCloud campaign deploying a stealthy, fileless payload through a...

RubyGems Under Attack: 60 Malicious Packages Found Stealing Credentials from Grey-Hat Marketers Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

RubyGems Under Attack: 60 Malicious Packages Found Stealing Credentials from Grey-Hat Marketers

Ddos August 8, 2025

Socket’s Threat Research Team has revealed a long-running supply chain attack in the RubyGems ecosystem, where a...

DarkCloud Stealer: New Evasive Tactics Use Obfuscated Scripts & VB6 Payloads to Evade Detection

Ddos August 8, 2025

Unit 42 researchers have uncovered a significant shift in the distribution tactics of the DarkCloud Stealer malware,...

The Malicious Go Modules: 11 Malicious Go Packages Found on GitHub Deploying Stealthy Malware Go Malware, Supply Chain Attack

The Malicious Go Modules: 11 Malicious Go Packages Found on GitHub Deploying Stealthy Malware

Ddos August 8, 2025

Socket’s Threat Research Team has uncovered an alarming wave of malicious Go packages—some still live on GitHub—designed...

India SIM-Binding Mandate Messaging App KYC WhatsApp DMA Interoperability BirdyChat Haiket Denmark Social Media Ban CVE-2025-55177 WhatsApp vulnerability, zero-click flaw npm Malware, System Wipe WhatsApp Windows App, WebView2 Downgrade WhatsApp Ban, US House NSO WhatsApp, Pegasus Spyware WhatsApp iPad iPadOS app

The WhatsApp Kill Switch: New npm Packages Use Developer’s Phone Number to Wipe Systems

Ddos August 7, 2025

Socket’s Threat Research Team has uncovered two malicious npm packages—naya-flore and nvlore-hsc—designed to target developers building WhatsApp...

Cryptocurrency Scams: How Fake Binance Ads Steal Your Data Malware, Cryptocurrency

Cryptocurrency Scams: How Fake Binance Ads Steal Your Data

Ddos August 7, 2025

AhnLab Security Intelligence Center (ASEC) has uncovered a sophisticated multi-stage malware campaign that targets cryptocurrency users through...

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware UAC-0099, Ukraine Cyberattack

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware

Ddos August 7, 2025

In a concerning escalation of cyber aggression, Ukraine’s National Cyber Security Incidents Response Team (CERT-UA) has uncovered...

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning Bumblebee Malware, Akira Ransomware

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning

Ddos August 6, 2025

In a reminder that even a Google or Bing search can be the first step in a...

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration PXA Stealer, Infostealer

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration

Ddos August 5, 2025

A new report by SentinelLABS and Beazley Security unveils an expansive and rapidly evolving infostealer operation powered...

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit Raspberry Robin, Malware Evasion

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit

Ddos August 5, 2025

ThreatLabz has released a fresh technical update on Raspberry Robin, the elusive USB-propagated malware also known as...

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads Kimsuky APT, Cyberespionage

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads

Ddos August 5, 2025

A new report from Aryaka Threat Research Labs has disclosured one of the most technically sophisticated and...

APT37 Escalates Cyber-Espionage on South Korea: New RoKRAT Backdoor Uses Stealthy LNK Files & Steganography

Ddos August 4, 2025

The North Korea-linked threat actor APT37, known for its persistent cyberespionage campaigns in South Korea and beyond,...

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering Interlock Ransomware, ClickFix Technique

Interlock Ransomware, ClickFix Technique

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering

Ddos August 2, 2025

The eSentire Threat Response Unit (TRU) exposed a detailed and technically sophisticated ransomware campaign orchestrated by the...

RMM Tools Weaponized: Stealthy Campaign Embeds Legitimate Remote Monitoring Software in PDFs to Target European Orgs

Ddos August 1, 2025

WithSecure has uncovered a stealthy campaign using legitimate Remote Monitoring and Management (RMM) tools embedded in PDF...

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant FunkSec Decryptor, Ransomware Recovery

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant

Ddos August 1, 2025

The cybersecurity firm Gen Digital—formerly known as Symantec and Norton—has recently submitted the decryption key and tool...

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets Lazarus Group, Software Supply Chain

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets

Ddos July 31, 2025

In a recently expose, Sonatype reveals a covert cyberespionage campaign orchestrated by the North Korea-linked Lazarus Group,...

Kaspersky Uncovers Stealthy Cyberespionage: Russia & Asia Targeted by DLL Hijacking & Social Media C2 Cyberespionage, DLL Hijacking

Kaspersky Uncovers Stealthy Cyberespionage: Russia & Asia Targeted by DLL Hijacking & Social Media C2

Ddos July 31, 2025

Kaspersky Labs has revealed a highly obfuscated cyberespionage campaign targeting Russian IT companies and global businesses, employing...

Critical Alert 2 Active Exploits Detected Today