Remote Access Trojan Archives • Page 5 of 5 • Daily CyberSecurity

IBM X-Force Uncovers Hive0131’s Sophisticated DCRat Campaign Targeting Colombian Users

IBM X-Force Uncovers Hive0131’s Sophisticated DCRat Campaign Targeting Colombian Users

Do Son June 5, 2025

In early May 2025, IBM X-Force researchers observed an active phishing campaign targeting Colombian users with fake...

Spear-Phishing Alert: NetBird RAT Spreads via Deceptive Job Lures NetBird phishing Spear-phishing campaign

Spear-Phishing Alert: NetBird RAT Spreads via Deceptive Job Lures

Do Son May 30, 2025

Trellix’s Advanced Research Center has uncovered a highly targeted and stealthy spear-phishing campaign aimed at finance executives...

Warning: New Malvertising Campaign Uses Fake Cloudflare Pages to Deliver Malware Fake Cloudflare page, WordPress theme malware

Warning: New Malvertising Campaign Uses Fake Cloudflare Pages to Deliver Malware

Do Son May 24, 2025

A new wave of deceptive attacks is weaponizing the trusted Cloudflare brand to deliver Windows-based malware through...

Stealthy Remcos RAT Campaign Uses PowerShell to Evade Antivirus Detection

Do Son May 17, 2025

In the latest threat intelligence from the Qualys Threat Research Unit (TRU), cybersecurity researchers have uncovered a...

Aikido Uncovers Malicious Code in Popular npm Package rand-user-agent

Do Son May 8, 2025

Aikido Security has uncovered a Remote Access Trojan (RAT) embedded in rand-user-agent, a JavaScript package downloaded ~45,000...

CAPTCHA to Command: Trustwave Uncovers Stealthy NodeJS Backdoor Campaign Fake captcha page

CAPTCHA to Command: Trustwave Uncovers Stealthy NodeJS Backdoor Campaign

Do Son May 1, 2025

Trustwave SpiderLabs has uncovered an evolving cyber threat that leverages deceptive CAPTCHA verifications to infect users with...

Discord Used as C2 for Stealthy Python-Based RAT Discord RAT, Python malware

Discord Used as C2 for Stealthy Python-Based RAT

Do Son April 29, 2025

In a detailed report by Cyfirma, researchers have uncovered a Python-based Remote Access Trojan (RAT) that leverages...

Check Point VPN vulnerability exploited in the wild Check Point VPN exploit CVE-2026-50751 zero-day Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

DslogdRAT Malware Targets Ivanti Connect Secure via CVE-2025-0282 Zero-Day Exploit

Do Son April 26, 2025

A newly published report by Yuma Masubuchi from the JPCERT Coordination Center (JPCERT/CC) has uncovered the deployment...

Unveiling a Multi-Stage Malware Attack: Cloudflare Abuse and AsyncRAT Delivery Infection chains distributing AsyncRAT

Unveiling a Multi-Stage Malware Attack: Cloudflare Abuse and AsyncRAT Delivery

Do Son April 23, 2025

In a detailed report by the Sekoia Threat Detection & Research (TDR) team, researchers have unveiled a...

ResolverRAT: New RAT Employs Advanced Evasion Techniques Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

ResolverRAT: New RAT Employs Advanced Evasion Techniques

Do Son April 15, 2025

A new remote access trojan (RAT) has emerged, and it’s armed with advanced techniques to evade detection....

Neptune RAT: Advanced Malware Targets Windows with Destructive Capabilities Neptune RAT, Remote Access Trojan

Neptune RAT: Advanced Malware Targets Windows with Destructive Capabilities

Do Son April 9, 2025

CYFIRMA researchers have uncovered a new version of the Neptune RAT, a Remote Access Trojan (RAT) that...

Over 18,000 Devices Compromised in XWorm RAT Builder Campaign XWorm Remote Access Trojan

Over 18,000 Devices Compromised in XWorm RAT Builder Campaign

Do Son January 28, 2025

A trojanized version of the XWorm Remote Access Trojan (RAT) builder has been weaponized and is being...

NonEuclid RAT—A Sophisticated Tool in the Cybercrime Arsenal Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

NonEuclid RAT—A Sophisticated Tool in the Cybercrime Arsenal

Do Son January 5, 2025

The NonEuclid Remote Access Trojan (RAT), detailed in a report by CYFIRMA, represents a significant evolution in...

China-Linked Mustang Panda Targets Vietnamese Entities in Cyber Espionage Campaign

Do Son June 10, 2024

Vietnamese organizations and individuals have become the latest targets of Mustang Panda, a notorious Chinese cyber espionage...

GoTo Meeting Exploited to Deliver Remcos RAT via Rust Shellcode Loader Remcos Remote Access Trojan

GoTo Meeting Exploited to Deliver Remcos RAT via Rust Shellcode Loader

Do Son May 13, 2024

Recently, cybersecurity experts at G Data have uncovered a sophisticated malware campaign that hijacks legitimate applications to...

FIN7 Hackers Using Signed Malware and Fake Google Ads to Evade Defenses

Do Son May 9, 2024

Researchers at eSentire’s Threat Response Unit (TRU) have uncovered a disturbing trend in FIN7 attacks demonstrating the...

npm’s Hidden Threat: The Covert Trojan Lurking in Your Windows System npm Trojan

npm’s Hidden Threat: The Covert Trojan Lurking in Your Windows System

Do Son January 21, 2024

Recently, the Phylum team’s automated risk detection platform uncovered a suspicious publication on npm, a popular package...

2023 Q3 Threat Report: Alarming Rise in Remote Access Trojan Infiltrations Caminho LSB Steganography, Loader-as-a-Service 2023 Threat Report

2023 Q3 Threat Report: Alarming Rise in Remote Access Trojan Infiltrations

Do Son November 2, 2023

In the third quarter of the 2023 Threat Insights Report recently published by HP Wolf Security, a...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

Remote Access Trojan

IBM X-Force Uncovers Hive0131’s Sophisticated DCRat Campaign Targeting Colombian Users

Warning: New Malvertising Campaign Uses Fake Cloudflare Pages to Deliver Malware

Stealthy Remcos RAT Campaign Uses PowerShell to Evade Antivirus Detection

Aikido Uncovers Malicious Code in Popular npm Package rand-user-agent

CAPTCHA to Command: Trustwave Uncovers Stealthy NodeJS Backdoor Campaign

Discord Used as C2 for Stealthy Python-Based RAT

DslogdRAT Malware Targets Ivanti Connect Secure via CVE-2025-0282 Zero-Day Exploit

Unveiling a Multi-Stage Malware Attack: Cloudflare Abuse and AsyncRAT Delivery

ResolverRAT: New RAT Employs Advanced Evasion Techniques

Neptune RAT: Advanced Malware Targets Windows with Destructive Capabilities

Over 18,000 Devices Compromised in XWorm RAT Builder Campaign

NonEuclid RAT—A Sophisticated Tool in the Cybercrime Arsenal

China-Linked Mustang Panda Targets Vietnamese Entities in Cyber Espionage Campaign

GoTo Meeting Exploited to Deliver Remcos RAT via Rust Shellcode Loader

FIN7 Hackers Using Signed Malware and Fake Google Ads to Evade Defenses

npm’s Hidden Threat: The Covert Trojan Lurking in Your Windows System

2023 Q3 Threat Report: Alarming Rise in Remote Access Trojan Infiltrations