malware

March 30, 2026

Exposed Server Leaks TheGentlemen Ransomware Toolkit, Credentials, and Ngrok Tokens

A fully operational TheGentlemen ransomware toolkit has been discovered by researchers on an exposed server, revealing victim credentials, ngrok tokens,…
Read More »
March 30, 2026

Stealthy .NET Malware Adds AV Killer, HVNC Features

CrySome RAT is a newly observed, advanced .NET remote access trojan that combines full-featured post‑exploitation tooling with unusually hardened persistence,…
Read More »
March 30, 2026

TA446 Uses DarkSword Exploit Kit to Target iPhone Users

Russia-linked espionage group TA446 has initiated a new phishing campaign using the DarkSword exploit kit to compromise iOS devices, leveraging…
Read More »
March 30, 2026

New Homoglyph Tricks Let Cybercriminals Mimic Trusted Domains

New homoglyph attack techniques exploit subtle visual similarities in text to spoof trusted domains, steal credentials, and bypass Unicode handling…
Read More »
March 30, 2026

Telnyx Python SDK Backdoored on PyPI to Steal Cloud Credentials

The popular Telnyx Python SDK on PyPI has been used in a multi-stage credential-stealing operation targeting cloud infrastructure, Kubernetes clusters,…
Read More »
March 27, 2026

Hackers Implant Stealthy BPFdoor Backdoors in Telecom Networks for Persistent Access

A China-nexus threat actor known as Red Menshen is planting stealthy backdoors deep inside global telecommunications networks. According to a…
Read More »
March 27, 2026

Phishing ZIP Files Used to Deploy PXA Stealer Targeting Financial Firms

A significant surge in PXA Stealer campaigns targeting global financial institutions during Q1 2026. This marks a notable shift in…
Read More »
March 27, 2026

Red Hat Warns of Malware Embedded in Popular Linux Tool, Opening Doors for Unauthorized Access

Red Hat has issued an urgent security alert concerning a highly sophisticated supply chain attack that compromised recent versions of…
Read More »
March 27, 2026

Hackers Target South Asian Financial Firm with BRUSHWORM and BRUSHLOGGER Attacks

A South Asian financial institution faced compromise due to a custom malware toolkit combining a modular backdoor (BRUSHWORM) and a…
Read More »
March 27, 2026

TeamPCP Hackers Focus on AI Developers, Planting Malicious Code to Disrupt Projects

The FBI Cyber Division has issued a critical alert following a massive supply chain attack orchestrated by the threat actor…
Read More »
March 27, 2026

Hackers Deploy USB Malware, RATs, and Stealers in Southeast Asian Government Attacks

A multi-cluster cyberespionage operation in which attackers used USB-propagated malware, multiple RATs, loaders, and a custom stealer to target a…
Read More »
March 27, 2026

Silver Fox Cyberattack Targets Japanese Businesses with Tax-Themed Phishing Scams

A threat actor known as Silver Fox is targeting Japanese organizations with a new wave of spearphishing attacks timed to…
Read More »
March 26, 2026

VoidLink Rootkit Leverages eBPF and Kernel Modules to Stealthily Infiltrate Linux Systems

VoidLink is a new Linux rootkit family that combines classic kernel modules with eBPF to hide processes and network activity…
Read More »
March 26, 2026

New ClickFix Attack Exploits Windows Run Dialog and macOS Terminal to Deploy Malware

Threat actors are standardizing a powerful ClickFix-based attack that abuses the Windows Run dialog box and macOS Terminal to deliver…
Read More »
March 26, 2026

GhostClaw AI Malware Targets macOS Users with Credential-Stealing Payloads

GhostClaw, a multi-stage macOS infostealer, now exploits both GitHub repositories and AI-assisted development workflows to steal credentials and deploy secondary…
Read More »
March 26, 2026

Fake Screenshot Lures Target Web3 Support Staff with Multi-Stage Malware Attack

A campaign attributed to APT-Q-27 (GoldenEyeDog), a Chinese group targeting Web3, is leveraging deceptive fake screenshot links delivered through support…
Read More »
March 25, 2026

Microsoft Unveils New Guidance to Detect and Defend Against Trivy Supply Chain Attack

Aqua Security’s vulnerability scanner, Trivy, faced a sophisticated CI/CD supply chain compromise. The threat actor, identified as TeamPCP, exploited prior…
Read More »
March 25, 2026

Obfuscated VBS and PNG Loaders Power New Open Directory Malware Campaign with RAT Payloads

A sophisticated, multi-stage delivery mechanism utilizing obfuscated Visual Basic Script (VBS) files, fileless PowerShell loaders, and payloads concealed within PNG…
Read More »
March 25, 2026

China-Backed Hackers Target Southeast Asian Military Systems in Ongoing Spy Campaign

China-linked threat actors have been identified targeting Southeast Asian military networks in a long-running cyber espionage campaign focused on intelligence…
Read More »
March 25, 2026

Mirai Botnets Evolve Into Major DDoS and Proxy Abuse Threats

Mirai-based botnets have evolved from simple IoT malware into large-scale DDoS and proxy abuse platforms underpinning record-breaking attacks and stealthy…
Read More »

Previous page Next page