Malware & Threats Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched...

SecurityWeek News2 days ago

Malware & Threats

CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

CryptoBandits uses a local SOCKS5 proxy for traffic routing, blending data theft with remote code execution.

Ionut Arghire2 days ago

Malware & Threats

FortiBleed: 86,000 Fortinet Device Credentials Compromised

The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs.

Ionut Arghire2 days ago

Malware & Threats

15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown

Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame.

Ionut Arghire2 days ago

Malware & Threats

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions

Turla malware was deployed in February on select systems that Gamaredon had compromised in January.

Ionut ArghireSeptember 19, 2025

Malware & Threats

CISA Analyzes Malware From Ivanti EPMM Intrusions

Hackers chained two Ivanti EPMM vulnerabilities to collect system information, dump credentials, and execute malware.

Ionut ArghireSeptember 19, 2025

Malware & Threats

Threat Actor Infests Hotels With New RAT

RevengeHotels has been targeting hotels in Brazil and Spanish-speaking regions with VenomRAT implants in 2025.

Ionut ArghireSeptember 18, 2025

Malware & Threats

FBI Shares IoCs for Recent Salesforce Intrusion Campaigns

The cybercrime groups tracked as UNC6040 and UNC6395 have been extorting organizations after stealing data from their Salesforce instances.

Ionut ArghireSeptember 15, 2025

Malware & Threats

Apple Sends Fresh Wave of Spyware Notifications to French Users

Apple this year sent at least four rounds of notifications to French users potentially targeted by commercial spyware.

Ionut ArghireSeptember 12, 2025

Malware & Threats

Exposed Docker APIs Likely Exploited to Build Botnet

Hackers mount the host’s file system into fresh containers, fetch malicious scripts over the Tor network, and block access to the Docker API.

Ionut ArghireSeptember 9, 2025

Malware & Threats

China-Linked Hackers Hijack Web Traffic to Deliver Backdoor

Google researchers say China-linked UNC6384 combined social engineering, signed malware, and adversary-in-the-middle attacks to evade detection.

Ionut ArghireAugust 27, 2025

Malware & Threats

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime

Competition among malware-as-a-service developers has transformed infostealers into refined, accessible tools for cybercriminals worldwide.

Kevin TownsendAugust 27, 2025

Artificial Intelligence

PromptLock: First AI-Powered Ransomware Emerges

Proof-of-concept ransomware uses AI models to generate attack scripts in real time.

Ionut ArghireAugust 27, 2025

Malware & Threats

Anatsa Android Banking Trojan Now Targeting 830 Financial Apps

The Anatsa Android banking trojan has expanded its target list to new countries and more cryptocurrency applications.

Ionut ArghireAugust 25, 2025

Malware & Threats

Hundreds Targeted in New Atomic macOS Stealer Campaign

Between June and August, over 300 entities were targeted with the Atomic macOS Stealer via malvertising.

Ionut ArghireAugust 22, 2025

Malware & Threats

Microsoft Dissects PipeMagic Modular Backdoor

PipeMagic, which poses as a ChatGPT application, is a modular malware framework that provides persistent access and flexibility.

Ionut ArghireAugust 19, 2025

Malware & Threats

In Other News: Nvidia Says No to Backdoors, Satellite Hacking, Energy Sector Assessment

Noteworthy stories that might have slipped under the radar: federal court filing system hack, Chanel data breach, emergency CISA directive.

SecurityWeek NewsAugust 8, 2025

Malware & Threats

Microsoft’s Project Ire Autonomously Reverse Engineers Software to Find Malware

Microsoft has unveiled Project Ire, a prototype autonomous AI agent that can analyze any software file to determine if it’s malicious.

Eduard KovacsAugust 5, 2025

Malware & Threats

Sophisticated Koske Linux Malware Developed With AI Aid

The Koske Linux malware shows how cybercriminals can use AI for payload development, persistence, and adaptivity.

Eduard KovacsJuly 25, 2025

Government

ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named

More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

Eduard KovacsJuly 24, 2025

Malware & Threats

Coyote Banking Trojan First to Abuse Microsoft UIA

Akamai’s analysis of the Coyote malware revealed that it abuses Microsoft’s UIA accessibility framework to obtain data.

Eduard KovacsJuly 23, 2025

Malware & Threats

Lumma Stealer Malware Returns After Takedown Attempt

The Lumma Stealer is back after Microsoft and law enforcement took action to significantly disrupt the malware’s infrastructure.

Eduard KovacsJuly 23, 2025

Malware & Threats

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days.

Eduard KovacsJuly 22, 2025

Malware & Threats

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities.

Eduard KovacsJuly 22, 2025

Page 10 of 311« First ‹ Previous 6 7 8 91011 12 13 14 Next ›Last »

Webinar: How Modern Breaches Bypass MFA and Evade Detection

June 17, 2026

Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.

Webinar: Modern Exposure Validation in the AI Era

June 24, 2026

AI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Malware & Threats

CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

Malware & Threats

FortiBleed: 86,000 Fortinet Device Credentials Compromised

Malware & Threats

15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown

Malware & Threats

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions

Malware & Threats

CISA Analyzes Malware From Ivanti EPMM Intrusions

Malware & Threats

Threat Actor Infests Hotels With New RAT

Malware & Threats

FBI Shares IoCs for Recent Salesforce Intrusion Campaigns

Malware & Threats

Apple Sends Fresh Wave of Spyware Notifications to French Users

Malware & Threats

Exposed Docker APIs Likely Exploited to Build Botnet

Malware & Threats

China-Linked Hackers Hijack Web Traffic to Deliver Backdoor

Malware & Threats

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime

Artificial Intelligence

PromptLock: First AI-Powered Ransomware Emerges

Malware & Threats

Anatsa Android Banking Trojan Now Targeting 830 Financial Apps

Malware & Threats

Hundreds Targeted in New Atomic macOS Stealer Campaign

Malware & Threats

Microsoft Dissects PipeMagic Modular Backdoor

Malware & Threats

In Other News: Nvidia Says No to Backdoors, Satellite Hacking, Energy Sector Assessment

Malware & Threats

Microsoft’s Project Ire Autonomously Reverse Engineers Software to Find Malware

Malware & Threats

Sophisticated Koske Linux Malware Developed With AI Aid

Government

ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named

Malware & Threats

Coyote Banking Trojan First to Abuse Microsoft UIA

Malware & Threats

Lumma Stealer Malware Returns After Takedown Attempt

Malware & Threats

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch

Malware & Threats

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

Daily Briefing Newsletter

Trending

Webinar: How Modern Breaches Bypass MFA and Evade Detection

Webinar: Modern Exposure Validation in the AI Era

People on the move

Expert Insights

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

The Zero-Knowledge Threat Actor and the End of Responsible Disclosure

Raising the Cybersecurity Stakes: Ante up for the Agentic Era

Daily Briefing Newsletter