powershell Archives • Page 4 of 5 • Daily CyberSecurity

Stealthy Catena Loader Delivers Winos RAT via Trojanized App Installers win

Stealthy Catena Loader Delivers Winos RAT via Trojanized App Installers

Do Son May 28, 2025

A stealthy, memory-resident malware campaign is silently infiltrating systems using trojanized software installers for popular apps like...

Fake Google Meet Page Tricks Users into Running Malware Fake Google Meet, PowerShell malware

Fake Google Meet Page Tricks Users into Running Malware

Do Son May 27, 2025

A deceptively crafted fake Google Meet page has surfaced on compromised WordPress sites, tricking unsuspecting visitors into...

AI-Generated Malware: TikTok Videos Push Infostealers with PowerShell Commands TikTok malware, AI-generated malware

AI-Generated Malware: TikTok Videos Push Infostealers with PowerShell Commands

Do Son May 24, 2025

Trend Micro reveals a growing threat on TikTok, where AI-generated videos deceive users into running malicious PowerShell...

Beyond Detection: PyBitmessage Protocol Used for Covert Monero Mining Campaign PyBitmessage malware, Monero coinminer

Beyond Detection: PyBitmessage Protocol Used for Covert Monero Mining Campaign

Do Son May 22, 2025

In a new and deeply evasive malware campaign, cybercriminals are leveraging the PyBitmessage protocol to hide a...

Horabot Malware Targets Latin America with Sophisticated Phishing

Do Son May 14, 2025

In a recent investigation, FortiGuard Labs has exposed a sophisticated phishing campaign distributing the Horabot malware family,...

CAPTCHA Trap: Fake Verification Unleashes Lumma Stealer on Unsuspecting Users

Do Son May 13, 2025

Sophos X-Ops has uncovered a cunning cybercrime campaign using fake CAPTCHA pages to trick users into running...

DOGE Big Balls Ransomware: New Tools and Tactics Uncovered DOGE Big Balls Ransomware Ransomware infection chain

DOGE Big Balls Ransomware: New Tools and Tactics Uncovered

Do Son May 9, 2025

Netskope Threat Labs has recently uncovered a multi-stage infection chain involving custom PowerShell scripts, open-source tools, exploitation...

Kimsuky’s PebbleDash Campaign: PowerShell Attacks & RDP Bypass Tactics Kimsuky Group PebbleDash Malware

Kimsuky’s PebbleDash Campaign: PowerShell Attacks & RDP Bypass Tactics

Do Son April 25, 2025

A recent report by the AhnLab Security intelligence Center (ASEC) has uncovered the latest tactics employed by...

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation FOG ransomware, phishing

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation

Do Son April 22, 2025

Trend Micro has identified a recent campaign involving FOG ransomware, demonstrating the adaptability of cybercriminals in their...

Node.js Misused in Malvertising Campaigns to Deliver Stealthy Malware Node.js malware, malvertising attacks

Node.js Misused in Malvertising Campaigns to Deliver Stealthy Malware

Do Son April 17, 2025

Microsoft Defender Experts (DEX) has observed a rise in malicious campaigns that use Node.js to deliver malware...

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign ViperSoftX malware South Korea cyberattack

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign

Do Son April 13, 2025

AhnLab Security intelligence Center (ASEC) has revealed a cyberattack campaign where Arabic-speaking attackers are distributing ViperSoftX malware,...

Konni RAT Resurfaces: North Korean Espionage Malware Evolves with Stealth and Persistence North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Konni RAT Resurfaces: North Korean Espionage Malware Evolves with Stealth and Persistence

Do Son April 1, 2025

Cyfirma’s recent analysis sheds light on Konni RAT, a sophisticated Remote Access Trojan (RAT) targeting Windows systems....

New “Arcane Stealer” Malware Targets Gamers Through YouTube Cheats

Do Son March 20, 2025

A new and sophisticated stealer malware named “Arcane” is targeting gamers byDistribution through YouTube videos promoting game...

ClearFake Malware Variant Exploits Web3 in New Attacks Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

ClearFake Malware Variant Exploits Web3 in New Attacks

Do Son March 19, 2025

A new variant of the ClearFake malware is exploiting Web3 capabilities to enhance its malicious operations, according...

Apache Camel Vulnerability (CVE-2025-27636) Exposes Applications to RCE, PoC Releases Apache Camel K Vulnerability CVE-2026-45760 Build Deputy Apache Camel Security CVE-2026-23552 CVE-2025-27636 CVE-2025-29891 PoC

Apache Camel K Vulnerability CVE-2026-45760 Build Deputy Apache Camel Security CVE-2026-23552 CVE-2025-27636 CVE-2025-29891 PoC

Apache Camel Vulnerability (CVE-2025-27636) Exposes Applications to RCE, PoC Releases

Do Son March 12, 2025

A recently patched vulnerability in the popular Apache Camel Java library is under scrutiny by security researchers,...

Phantom Goblin Malware: Stealthy Attacks via VSCode Tunnels

Do Son March 10, 2025

A newly identified stealthy malware campaign, dubbed Phantom Goblin, has been uncovered by Cyble Research and Intelligence...

Beware of Trojanized Apps: EncryptHub Targets Cryptocurrency Wallets and Corporate Networks

Do Son March 9, 2025

A newly cybercriminal entity, EncryptHub, has gained attention from multiple threat intelligence teams, including Outpost24’s KrakenLabs. Their...

Fake Copyright Claims: YouTubers Tricked into Pushing Malware Youtube malware

Fake Copyright Claims: YouTubers Tricked into Pushing Malware

Do Son March 6, 2025

In a concerning development, cybercriminals have leveraged the influence of YouTubers to distribute malware disguised as a...

Massive Cyber Campaign Exploits 4,000 ISP IPs in the U.S. and China for Credential Theft and Cryptojacking ISP Infostealer Campaign

Massive Cyber Campaign Exploits 4,000 ISP IPs in the U.S. and China for Credential Theft and Cryptojacking

Do Son March 6, 2025

A new cybersecurity report from The Splunk Threat Research Team has uncovered a widespread infostealer and cryptomining...

RedCurl APT Group: Cyber Espionage with Living-Off-the-Land Techniques WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

RedCurl APT Group: Cyber Espionage with Living-Off-the-Land Techniques

Do Son January 12, 2025

The RedCurl Advanced Persistent Threat (APT) group, also known as Earth Kapre or Red Wolf, has resurfaced...

Critical Alert 1 Active Exploit Detected Today