Malware & Threats
Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched...
Hi, what are you looking for?
The threat actor is focused on collecting credentials, SSH keys, cryptocurrency wallets, and development tooling.
Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched...
CryptoBandits uses a local SOCKS5 proxy for traffic routing, blending data theft with remote code execution.
The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs.
Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame.
The Android malware allows its operators to take control of infected devices and harvest sensitive information.
The attackers deployed a new Go-based backdoor that uses Microsoft Teams servers for command-and-control.
Arch Linux suspended account registrations in response to the wave of malicious packages being uploaded to AUR.
Researchers say the OnyxC2 malware targets more than 200 applications and extensions while evading detection through encrypted payloads, DLL sideloading, and in-memory execution techniques.
As attackers increasingly favor stolen credentials over exploits, infostealers have become a primary source of access for ransomware and other cybercrime operations.
The most recent variants of the self-propagating attacks are named Miasma and Hades.
Relying on social engineering, the hacking group engages in credential phishing, malware distribution, and fraud activities.
The attackers had access to a senior executive’s email account for 150 days and exfiltrated data for months.
Noteworthy stories that might have slipped under the radar: Trump Mobile exposes customer data, phishers target the 2026 FIFA World Cup, CISA responds to...
Researchers warn GreyVibe’s extensive use of ChatGPT, Gemini, and other AI tools offers a glimpse into how future cybercriminal and state-aligned groups will operate.
Delivered via phishing lures, the malware combines financial theft with data exfiltration and remote access.
Security firms took down all four command-and-control (C&C) channels used by the GlassWorm malware.