malware

November 28, 2025

Quttera Launches “Evidence-as-Code” API to Automate Security Compliance for SOC 2 and PCI DSS v4.0

New API capabilities and AI-powered Threat Encyclopedia eliminate manual audit preparation, providing real-time compliance evidence and instant threat intelligence Quttera…
Read More »
November 26, 2025

Chrome Extension Malware Secretly Adds Hidden SOL Fees to Solana Swap Transactions

Security researchers at Socket have uncovered a deceptive Chrome extension called Crypto Copilot that masquerades as a legitimate Solana trading…
Read More »
November 26, 2025

A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers

Security researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion…
Read More »
November 25, 2025

Microsoft Warns of Security Risks in New Agentic AI Feature

Microsoft is sounding the alarm on critical security considerations as it introduces agentic AI capabilities to Windows through experimental features…
Read More »
November 24, 2025

Zapier’s NPM Account Hacked, Multiple Packages Infected with Malware

Zapier’s NPM account has been successfully compromised, leading to the injection of the Shai Hulud malware into 425 packages currently…
Read More »
November 22, 2025

AI-Driven Obfuscated Malicious Apps Bypassing Antivirus Detection to Deliver Malicious Payloads

Cybersecurity researchers have identified a sophisticated malware campaign leveraging artificial intelligence to enhance obfuscation techniques, enabling malicious applications to circumvent…
Read More »
November 22, 2025

Advanced Features Bypass AI Detection and Steal Password Manager Data

The Python-based information-stealing tool Xillen Stealer has reached versions 4 and 5, significantly expanding its targeting capabilities and functionality across…
Read More »
November 14, 2025

Malicious npm Package with 206K Downloads Targeting GitHub Repositories to Steal Tokens

On Friday, November 7th, Veracode Threat Research discovered a dangerous typosquatting campaign targeting developers using GitHub Actions. The malicious npm…
Read More »
November 13, 2025

How Spam Filters Can Steal Your Email Logins in an Instant

Cybercriminals have launched a sophisticated phishing campaign that exploits trust in internal security systems by spoofing email delivery notifications to…
Read More »
November 13, 2025

Authorities Takedown 1,025 Servers Linked to Rhadamanthys, VenomRAT, and Elysium

Between November 10 and 14, 2025, law enforcement agencies executed one of the most significant coordinated operations against cybercriminals in…
Read More »
November 12, 2025

AppleScript Used to Deliver macOS Malware Disguised as Zoom & Teams Updates

Since Apple removed the popular “right-click and open” Gatekeeper override in August 2024, threat actors have shifted their tactics to…
Read More »
November 12, 2025

Ivanti Endpoint Manager Vulnerabilities Let Attackers Write Files Anywhere on Target Systems

Ivanti has released critical security updates for Ivanti Endpoint Manager to address three high-severity vulnerabilities that could allow authenticated attackers…
Read More »
November 11, 2025

Ferocious Kitten APT Uses MarkiRAT for Keystroke and Clipboard Surveillance

Ferocious Kitten, a covert cyber-espionage group active since at least 2015, has emerged as a persistent threat to Persian-speaking dissidents…
Read More »
November 11, 2025

Android Users Hit by Malware Disguised as Relaxation Programs

A sophisticated new cyberattack targeting Android devices in South Korea has been uncovered, leveraging Google’s asset-tracking feature, Find Hub, to…
Read More »
November 9, 2025

Herodotus Android Banking Trojan Takes Over Devices, Outsmarts Security Tools

A new threat has surfaced in the mobile banking landscape Herodotus, a sophisticated Android banking Trojan that has been wreaking…
Read More »
November 9, 2025

Weaponized Videos Trigger Self-Infection Tactics

ClickFix attacks have surged dramatically over the past year, cementing their position as pivotal tools in the modern attacker’s arsenal.…
Read More »
November 9, 2025

New Microsoft Teams Feature Exposes Users to Phishing and Malware Risks

Microsoft is poised to roll out a significant update to Teams, enabling users to initiate chats with anyone using just…
Read More »
November 8, 2025

New “LANDFALL” Android Malware Uses Samsung 0-Day Vulnerability Hidden in WhatsApp Images

Cybersecurity researchers at Unit 42 have uncovered a sophisticated Android spyware campaign that exploited a previously unknown zero-day vulnerability in…
Read More »
November 8, 2025

AI-Powered Cyber Threats Rise: Attackers Target Manufacturing Sector

A comprehensive new report reveals that manufacturing organizations are grappling with a dual challenge: rapidly adopting generative AI technologies while…
Read More »
November 8, 2025

Threat Actors Use Stolen RDP Credentials to Deploy Cephalus Ransomware

A new ransomware group, Cephalus, has emerged in the cybersecurity threat landscape, targeting organizations through compromised Remote Desktop Protocol (RDP)…
Read More »

Previous page Next page