malware

Ghost Crypt & PureRAT: New Stealthy Malware Targets Accounting Firm via “Process Hypnosis”

• Malware

Ghost Crypt & PureRAT: New Stealthy Malware Targets Accounting Firm via “Process Hypnosis”

Ddos July 22, 2025 0

eSentire’s Threat Response Unit (TRU) uncovered a sophisticated attack against a certified public accounting firm in the...

Read More Read more about Ghost Crypt & PureRAT: New Stealthy Malware Targets Accounting Firm via “Process Hypnosis”

Matanbuchus 3.0 Levels Up: New Stealthy Malware Loader Exploits Microsoft Teams

• Malware

Matanbuchus 3.0 Levels Up: New Stealthy Malware Loader Exploits Microsoft Teams

Ddos July 21, 2025 0

Matanbuchus, a well-known malware loader sold as Malware-as-a-Service (MaaS), has just leveled up. In its latest evolution—Matanbuchus...

Read More Read more about Matanbuchus 3.0 Levels Up: New Stealthy Malware Loader Exploits Microsoft Teams

UNG0002: Stealthy South Asian APT Group Unleashes New Malware in Cyber Espionage Campaigns Across Asia

• Cyber Security

UNG0002: Stealthy South Asian APT Group Unleashes New Malware in Cyber Espionage Campaigns Across Asia

Ddos July 21, 2025 0

The Seqrite Labs APT-Team has uncovered the latest espionage operations of UNG0002 (Unknown Group 0002), a stealthy...

Read More Read more about UNG0002: Stealthy South Asian APT Group Unleashes New Malware in Cyber Espionage Campaigns Across Asia

China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry

• Cyber Security

China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry

Ddos July 21, 2025 0

A new report from Proofpoint Threat Research sheds light on a coordinated espionage campaign by multiple China-aligned...

Read More Read more about China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry

SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials

• Malware

SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials

Ddos July 21, 2025 0

In a newly uncovered software supply chain attack, threat actors have successfully deployed a backdoored version of...

Read More Read more about SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials

PyPI Supply Chain Attack: “cloudscrapersafe” Steals Credit Cards via Fake Python Library

• Malware

PyPI Supply Chain Attack: “cloudscrapersafe” Steals Credit Cards via Fake Python Library

Ddos July 20, 2025 0

Imperva researchers have uncovered a supply chain attack masquerading as a popular Python utility. The package in...

Read More Read more about PyPI Supply Chain Attack: “cloudscrapersafe” Steals Credit Cards via Fake Python Library

Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages

• Cybercriminals

Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages

Ddos July 19, 2025 0

A deceptive and highly targeted phishing campaign has successfully compromised several popular npm packages, including eslint-config-prettier, eslint-plugin-prettier,...

Read More Read more about Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages

Google Sues BadBox 2.0 Botnet Operators, Protecting 10 Million+ Infected Android Devices

• Malware

Google Sues BadBox 2.0 Botnet Operators, Protecting 10 Million+ Infected Android Devices

Ddos July 18, 2025 0

In response to the escalating wave of cybersecurity threats, Google has filed a lawsuit against the operators...

Read More Read more about Google Sues BadBox 2.0 Botnet Operators, Protecting 10 Million+ Infected Android Devices

H2Miner Botnet Unleashes Lcrypt0rx: Flawed, AI-Generated Ransomware with Zero Detection Rates

• Malware

H2Miner Botnet Unleashes Lcrypt0rx: Flawed, AI-Generated Ransomware with Zero Detection Rates

Ddos July 18, 2025 0

A new investigation by the FortiCNAPP team, part of FortiGuard Labs, has revealed a disturbing evolution in...

Read More Read more about H2Miner Botnet Unleashes Lcrypt0rx: Flawed, AI-Generated Ransomware with Zero Detection Rates

Stealthy SquidLoader Malware Targets Hong Kong Financial Firms with Evasive Cobalt Strike Attacks

• Malware

Stealthy SquidLoader Malware Targets Hong Kong Financial Firms with Evasive Cobalt Strike Attacks

Ddos July 17, 2025 0

Trellix’s threat intelligence team has uncovered a stealthy malware campaign aimed squarely at financial services institutions in...

Read More Read more about Stealthy SquidLoader Malware Targets Hong Kong Financial Firms with Evasive Cobalt Strike Attacks

Warning: “Educational” Octalyn Forensic Toolkit is a Dangerous Telegram-Controlled Credential Stealer

• Malware

Warning: “Educational” Octalyn Forensic Toolkit is a Dangerous Telegram-Controlled Credential Stealer

Ddos July 16, 2025 0

Researchers at Cyfirma have uncovered a disturbing example of how a so-called “educational” tool can cross the...

Read More Read more about Warning: “Educational” Octalyn Forensic Toolkit is a Dangerous Telegram-Controlled Credential Stealer

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

• Cybercriminals

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

Ddos July 16, 2025 0

A new wave of phishing attacks has been observed sweeping across Russia’s healthcare and IT sectors, attributed...

Read More Read more about New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

Cursor AI IDE Hacked: Fraudulent Extension Steals $500K in Crypto from Russian Developer

• Cybercriminals

Cursor AI IDE Hacked: Fraudulent Extension Steals $500K in Crypto from Russian Developer

Ddos July 15, 2025 0

A fraudulent extension for the Cursor AI IDE—an editor built upon Microsoft’s open-source Visual Studio Code—was used...

Read More Read more about Cursor AI IDE Hacked: Fraudulent Extension Steals $500K in Crypto from Russian Developer

XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again

• Malware

XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again

Ddos July 15, 2025 0

A new chapter in the ongoing Contagious Interview campaign has emerged, as the Socket Threat Research Team...

Read More Read more about XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again

Interlock RAT Gets PHP Makeover: New Variant Uses Steganography & ClickFix for Stealthy Infiltration

• Malware

Interlock RAT Gets PHP Makeover: New Variant Uses Steganography & ClickFix for Stealthy Infiltration

Ddos July 14, 2025 0

Researchers from The DFIR Report, in collaboration with Proofpoint, have uncovered a stealthy and resilient variant of...

Read More Read more about Interlock RAT Gets PHP Makeover: New Variant Uses Steganography & ClickFix for Stealthy Infiltration

RenderShock: New Zero-Click Attack Explores Hidden Vulnerabilities in OS & Enterprise Environments

• Vulnerability Report

RenderShock: New Zero-Click Attack Explores Hidden Vulnerabilities in OS & Enterprise Environments

Ddos July 14, 2025 0

CYFIRMA has uncovered a new threat model called RenderShock — a zero-click attack strategy that turns convenience...

Read More Read more about RenderShock: New Zero-Click Attack Explores Hidden Vulnerabilities in OS & Enterprise Environments

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

• Malware

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

Ddos July 14, 2025 0

In late 2024, security researchers from Unit 42 uncovered a sophisticated new variant of the malware associated...

Read More Read more about SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

WordPress Supply Chain Attack: Gravity Forms Plugin Backdoored Through Official Downloads

• Malware

WordPress Supply Chain Attack: Gravity Forms Plugin Backdoored Through Official Downloads

Ddos July 14, 2025 0

In a concerning development for WordPress site administrators, the Patchstack team has uncovered a targeted supply chain...

Read More Read more about WordPress Supply Chain Attack: Gravity Forms Plugin Backdoored Through Official Downloads

Darktrace Exposes “Fake Startup” Malware Campaign: Lures Crypto Users with AI/Web3 Apps to Steal Wallets

• Cybercriminals

Darktrace Exposes “Fake Startup” Malware Campaign: Lures Crypto Users with AI/Web3 Apps to Steal Wallets

Ddos July 14, 2025 0

In a revelation from Darktrace, researchers have uncovered a highly coordinated and ongoing cybercrime campaign that uses...

Read More Read more about Darktrace Exposes “Fake Startup” Malware Campaign: Lures Crypto Users with AI/Web3 Apps to Steal Wallets

Fake Free VPN & Minecraft Mod Repositories Deliver Lumma Stealer

• Malware

Fake Free VPN & Minecraft Mod Repositories Deliver Lumma Stealer

Ddos July 14, 2025 0

Cybercriminals are once again exploiting the trust users place in popular platforms like GitHub to spread sophisticated...

Read More Read more about Fake Free VPN & Minecraft Mod Repositories Deliver Lumma Stealer