malware

April 16, 2026

Proton VPN Impersonation Exposes NWHStealer: A Sophisticated Malware Campaign

Multiple ongoing malware campaigns are deploying the sophisticated information-stealing trojan, designated as NWHStealer, via deceptive VPN installer packages, gaming modifications,…
Read More »
April 16, 2026

Webhook Exploitation at Scale: n8n Infrastructure Abuse Surges 686% in Phishing Campaigns

A sophisticated threat campaign has emerged targeting agentic AI-driven workflow automation platforms, particularly n8n, to facilitate the delivery of malicious…
Read More »
April 16, 2026

Exposed: Over 1,250 Command and Control Servers Active in Russian Hosting Providers

New research reveals a startling reality within Russian networks: over 1,250 active command-and-control (C2) servers have been operating across 165…
Read More »
April 15, 2026

Attackers Weaponize Google Cloud Storage to Deliver Remcos RAT Through Phishing Campaigns

Cybercriminals are increasingly leveraging Google Cloud Storage infrastructure to circumvent email and web content filters, deploying Remcos Remote Access Trojan…
Read More »
April 15, 2026

Massive WordPress Supply Chain Attack: 30+ Plugins Compromised in Silent Backdoor Operation

A sophisticated supply chain attack targeting WordPress users lay dormant for nearly eight months before activating, ultimately compromising core configuration…
Read More »
April 15, 2026

How Cybercriminals Are Turning Your Inbox Rules Into a Backdoor

Hackers are quietly exploiting a built-in Microsoft 365 feature to steal emails, hide security alerts, and maintain long-term access to…
Read More »
April 15, 2026

OpenAI Launches GPT-5.4-Cyber to Bolster Cyber Defenses

OpenAI has introduced GPT-5.4-Cyber, a purpose-built variant of its flagship GPT-5.4 model, fine-tuned specifically for advanced defensive cybersecurity workflows. The…
Read More »
April 15, 2026

JanaWare: The Under-the-Radar Ransomware That Has Been Quietly Targeting Turkey Since 2020

A stealthy ransomware operation known as JanaWare has been silently preying on Turkish internet users for at least five years…
Read More »
April 14, 2026

Emerging Android Banking Trojan Mirax: A Stealthy RAT with Residential Proxy Capabilities

A new Android banking trojan called Mirax is rapidly gaining traction in the cybercrime ecosystem, combining powerful remote access features…
Read More »
April 14, 2026

New PlugX USB Worm Variant Spreads Globally Using Stealthy DLL Sideloading Techniques

A new variant of the PlugX USB worm is causing renewed concern as it spreads across several continents, leveraging DLL…
Read More »
April 14, 2026

Janela RAT: Financial Cybercrime Campaign Using Fake MSI Installers and Malicious Browser Extensions

Janela Remote Access Trojan (RAT) campaigns leverage fake Windows MSI installers and malicious browser extensions to infiltrate financial networks and…
Read More »
April 14, 2026

New Malware Campaign Abuses Obsidian Vaults to Target Crypto and Finance Professionals

A sophisticated new malware campaign is exploiting the popular note-taking app Obsidian to deliver a powerful remote access trojan called…
Read More »
April 14, 2026

Critical ShowDoc Vulnerability Exposes Organizations to Unauthenticated RCE

Cybersecurity researchers have uncovered a severe vulnerability in ShowDoc, a widely used online document-sharing platform designed for IT teams. Tracked…
Read More »
April 14, 2026

China-Linked APT41 Deploys Stealthy Linux Backdoor with SMTP Command-Control

Security researchers have uncovered a previously undocumented Linux backdoor attributed to China-linked APT41 (Winnti) group, actively targeting cloud workloads across…
Read More »
April 13, 2026

MSBuild.exe: The Stealthy Weapon in Fileless Attacks

Cyber attackers are increasingly leveraging Living Off the Land Binaries (LOLBins) to bypass modern security defenses. By weaponizing legitimate system…
Read More »
April 13, 2026

Iran’s CyberAv3ngers Escalates Attacks on U.S. Water Utilities and Industrial Systems

CyberAv3ngers, an Iranian state-linked threat group, has intensified disruptive campaigns against U.S. water utilities and industrial control systems, shifting from…
Read More »
April 13, 2026

VIPERTUNNEL: Python Malware Unmasked Through Fake DLLs & Multi-Stage Obfuscation

Hackers are leveraging a sophisticated Python backdoor called VIPERTUNNEL to establish covert command-and-control channels in victim networks. The attack chain…
Read More »
April 13, 2026

WordPress Plugin Vulnerability Enables Admin Takeover via Auth Bypass

A newly disclosed vulnerability, tracked as CVE-2026-1492, has been identified in the User Registration & Membership plugin for WordPress, exposing…
Read More »
April 10, 2026

Middle East Espionage Attack Uses Fake Secure Messaging Apps to Deliver ProSpy

Hackers are impersonating popular secure messaging apps to deploy a sophisticated Android spyware tool called ProSpy against journalists, activists, and…
Read More »
April 9, 2026

ClickFix, Malicious DMGs Push notnullOSX to macOS Users

Hackers are abusing ClickFix commands and booby-trapping DMG installers to deliver a new macOS stealer called notnullOSX, built to loot…
Read More »

Previous page Next page