malware Archives • Page 2 of 28 • Daily CyberSecurity

Nexcorium Botnet Turns Unpatched DVRs into DDoS Foot Soldiers Nexcorium Botnet Mirai Variant

Nexcorium Botnet Turns Unpatched DVRs into DDoS Foot Soldiers

Ddos April 21, 2026

Security researchers at FortiGuard Labs have uncovered a sophisticated campaign deploying Nexcorium, a multi-architecture Mirai variant that...

SEO Poisoning & NativeAOT: Unmasking the “Kong RAT” Campaign Targeting IT Professionals Kong RAT SEO Poisoning

SEO Poisoning & NativeAOT: Unmasking the “Kong RAT” Campaign Targeting IT Professionals

Ddos April 21, 2026

Cybersecurity researchers have uncovered a sophisticated, multi-stage malware operation that turned legitimate search engine results into a...

Beyond Gatekeeper: How Sapphire Sleet’s AppleScript Trap Hijacks macOS and Crypto Wallets Sapphire Sleet macOS TCC Bypass Malware

Beyond Gatekeeper: How Sapphire Sleet’s AppleScript Trap Hijacks macOS and Crypto Wallets

Ddos April 21, 2026

In a sophisticated shift away from traditional software exploitation, the North Korean state-sponsored threat actor Sapphire Sleet...

AI Hype Hijacked: How a Fake Claude Installer Blinds Windows Security Claude AI Phishing MSIX Malware

AI Hype Hijacked: How a Fake Claude Installer Blinds Windows Security

Ddos April 21, 2026

According to a new technical analysis from Rapid7, a sophisticated ClickFix campaign has been discovered masquerading as...

Zero-Day Alert: The “Red Sun” Vulnerability Turning Microsoft Defender into a Hacker’s Tool Red Sun vulnerability

Zero-Day Alert: The “Red Sun” Vulnerability Turning Microsoft Defender into a Hacker’s Tool

Ddos April 20, 2026

Microsoft Defender, formerly designated as Windows Defender, serves as the quintessential security suite for Windows 10 and...

AI-Generated RAT “PHANTOMPULSE” Targets Crypto Sector via Social Engineering PHANTOMPULSE RAT Obsidian Malware Abuse

AI-Generated RAT “PHANTOMPULSE” Targets Crypto Sector via Social Engineering

Ddos April 17, 2026

In a sophisticated intersection of social engineering and technical ingenuity, security researchers have uncovered a novel campaign...

The Invisible Patch: How PolinRider Rewrites Git History to Hide North Korean Malware PolinRider Malware Git History Falsification

The Invisible Patch: How PolinRider Rewrites Git History to Hide North Korean Malware

Ddos April 17, 2026

Security researchers from the OpenSourceMalware (OSM) team have uncovered a massive and rapidly expanding threat campaign targeting...

The “Graphalgo” Evolution: How North Korea Built a Fake Florida LLC to Hack Developers Graphalgo Campaign State-Sponsored Phishing

The “Graphalgo” Evolution: How North Korea Built a Fake Florida LLC to Hack Developers

Ddos April 15, 2026

The ReversingLabs (RL) research team has uncovered a sophisticated expansion of the “graphalgo” campaign. Originally identified in...

108 Coordinated Chrome Extensions Hijack Your Private Telegram Sessions Chrome Extension Malware Telegram Session Hijacking

108 Coordinated Chrome Extensions Hijack Your Private Telegram Sessions

Ddos April 15, 2026

Socket’s Threat Research Team identified 108 malicious Chrome extensions operating as a coordinated campaign under a shared...

Inside Canis C2: The ‘Wide Open’ Surveillance Engine Targeting Every Major OS Canis C2 Surveillance System

Inside Canis C2: The ‘Wide Open’ Surveillance Engine Targeting Every Major OS

Ddos April 14, 2026

In the world of cyber espionage, discovering a new Command and Control (C2) framework is often a...

The CPUID Watering Hole Attack Turning CPU-Z into a Trojan CVE-2023-22952 CPUID Watering Hole DLL Sideloading

The CPUID Watering Hole Attack Turning CPU-Z into a Trojan

Ddos April 13, 2026

In the world of system administration, few tools are as ubiquitous as CPU-Z and HWMonitor. These utilities...

STX RAT: The New Financial Predator Hiding in the “Start of Text” STX RAT Financial Malware

STX RAT: The New Financial Predator Hiding in the “Start of Text”

Ddos April 13, 2026

A sophisticated new player entered the cyber-threat landscape. Analysts at eSentire’s Threat Response Unit (TRU) have identified...

The Script Editor Shift: How ClickFix Evades macOS 26.4 Security to Deliver Atomic Stealer ClickFix macOS Script Editor Attack

The Script Editor Shift: How ClickFix Evades macOS 26.4 Security to Deliver Atomic Stealer

Ddos April 13, 2026

In the ever-evolving game of digital cat-and-mouse, Jamf Threat Labs has identified a clever adaptation of the...

The Stealthy Evolution of the DesckVB RAT Infection Chain DesckVB RAT Fileless Malware

The Stealthy Evolution of the DesckVB RAT Infection Chain

Ddos April 13, 2026

The Lat61 Threat Intelligence Team has pulled back the curtain on DesckVB RAT, a highly active and...

North Korea’s “Portfolio Model” Shatters Modern Attribution Attribution Resistance DPRK Cyber Portfolio

North Korea’s “Portfolio Model” Shatters Modern Attribution

Ddos April 10, 2026

North Korea’s cyber program has moved past the era of accidental growth into a period of “mature...

LinkedIn Job Seekers Targeted by Sophisticated “PXA Stealer” Campaign PXA Stealer LinkedIn Job Phishing

LinkedIn Job Seekers Targeted by Sophisticated “PXA Stealer” Campaign

Ddos April 10, 2026

A sophisticated, financially motivated threat campaign is currently sweeping across professional networks, specifically targeting job seekers on...

Alert: Social Engineering Campaign Targets Open Source Developers via Slack Social Engineering Developer Security

Alert: Social Engineering Campaign Targets Open Source Developers via Slack

Ddos April 8, 2026

A sophisticated, high-severity social engineering campaign is currently targeting the open source developer community. The attack, which...

Hackers are Using “Legit” IT Tools to Hijack the 2026 Tax Season 2026 Tax Phishing RMM Abuse

Hackers are Using “Legit” IT Tools to Hijack the 2026 Tax Season

Ddos April 5, 2026

As the 2026 tax season reaches its peak, cybersecurity researchers have identified a massive surge in digital...

The Human Variable: How a Masterful Phishing Ruse Hijacked Axios and 100 Million Users Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw