Malware & Threats Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

New Campaigns Distribute Malware via Open Source Hacking Tools

Trend Micro and ReversingLabs uncovered over 100 GitHub accounts distributing malware embedded in open source hacking tools.

Ionut Arghire14 minutes ago

Malware & Threats

New ClickFix Malware Variant ‘LightPerlGirl’ Targets Users in Stealthy Hack

Researchers identify a previously unknown ClickFix variant exploiting PowerShell and clipboard hijacking to deliver the Lumma infostealer via a compromised travel site.

Kevin Townsend2 days ago

Malware & Threats

Recent Langflow Vulnerability Exploited by Flodrix Botnet

A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.

Eduard Kovacs2 days ago

Malware & Threats

TeamFiltration Abused in Entra ID Account Takeover Campaign

Threat actors have abused the TeamFiltration pentesting framework to target over 80,000 Entra ID user accounts.

Ionut Arghire6 days ago

Malware & Threats

Thousands Download New Mandrake Android Spyware Version From Google Play

Five Android applications containing the Mandrake spyware have been downloaded over 32,000 times from Google Play since 2022.

Ionut ArghireJuly 30, 2024

Malware & Threats

Network of 3,000 GitHub Accounts Used for Malware Distribution

Stargazer Goblin has created a network of over 3,000 GitHub accounts to distribute malware through phishing repositories.

Ionut ArghireJuly 25, 2024

Malware & Threats

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine

A fresh Mandiant report documents North Korea's APT45 as a distinct hacking team conducting cyberespionage and ransomware operations.

Ryan NaraineJuly 25, 2024

Malware & Threats

Google Boosts Chrome Protections Against Malicious Files

Google has announced improved protections for Chrome users when downloading files from the internet.

Ionut ArghireJuly 25, 2024

Malware & Threats

Is GhostEmperor Back? Sygnia Finds Clues in Recent Cyber Incident

Sygnia discovered what it believes to be a variant of the GhostEmperor infection chain leading to the Demodex rootkit – which was first seen...

Kevin TownsendJuly 24, 2024

Malware & Threats

Telegram Zero-Day Enabled Malware Delivery

The EvilVideo zero-day vulnerability in Telegram for Android allowed threat actors to send malicious files disguised as videos.

Ionut ArghireJuly 23, 2024

Malware & Threats

CrowdStrike Incident Leveraged for Malware Delivery, Phishing, Scams

The major IT outage caused by CrowdStrike is being leveraged by threat actors for phishing, scams, and malware delivery.

Eduard KovacsJuly 22, 2024

Cyberwarfare

Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns

Chinese government-backed hacking team caught breaking into organizations in shipping, logistics and automotive sectors in Europe and Asia.

Ryan NaraineJuly 18, 2024

Malware & Threats

APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer

The Void Banshee APT exploited the CVE-2024-38112 Windows zero-day to infect systems with the Atlantida stealer.

Ionut ArghireJuly 16, 2024

Malware & Threats

Ukrainian Sentenced to Prison in US for Role in Zeus, IcedID Malware Operations

Vyacheslav Igorevich Penchukov was sentenced to nine years in prison for his role in the Zeus and IcedID malware operations.

Ionut ArghireJuly 15, 2024

Data Breaches

Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident

Advance Auto Parts says the personal information of 2.3 million was compromised after hackers accessed its Snowflake account.

Ionut ArghireJuly 12, 2024

Fraud & Identity Theft

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets With SSH-Snake and Open Source Tools

A threat actor tracked as CrystalRay has hit 1,500 victims since February, stealing credentials and deploying backdoors.

Ionut ArghireJuly 11, 2024

Incident Response

Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited

Patch Tuesday: Microsoft patches more than 140 security vulnerabilities in the Windows ecosystem, including a pair of exploited zero-days.

Ryan NaraineJuly 9, 2024

Malware & Threats

Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks

Adobe documents at least seven code execution bugs affecting Adobe Premiere Pro, Adobe InDesign and Adobe Bridge on Windows and macOS.

Ryan NaraineJuly 9, 2024

Malware & Threats

Europol Announces Crackdown on Cobalt Strike Servers Used by Cybercriminals

European law enforcement agency announces the takedown of nearly 600 Cobalt Strike servers linked to criminal activity.

Ryan NaraineJuly 3, 2024

Malware & Threats

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys

Censys has discovered more than 380,000 hosts, including major platforms, still referencing the malicious polyfill.io domain.

Ionut ArghireJuly 3, 2024

Malware & Threats

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Cisco has patched an NX-OS command injection zero-day exploited by China-linked cyberespionage group Velvet Ant.

Ionut ArghireJuly 2, 2024

Malware & Threats

In Other News: Malware Delivered by ISP, Temu Spying, Critical Dataverse Vulnerability

Noteworthy stories that might have slipped under the radar: Korean ISP delivers malware to customers, Temu sued for allegedly spying on users, Microsoft patches...

SecurityWeek NewsJune 28, 2024

Malware & Threats

Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity

Namecheap shut down polyfill.io amid reports of malicious activity, but the Chinese owner claims it has good intentions.

Ionut ArghireJune 28, 2024

Malware & Threats

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine

The US Justice Department has announced charges against Amin Stigal for conducting wiper cyberattacks on Ukraine in 2022.

Ionut ArghireJune 27, 2024

Page 12 of 300« First ‹ Previous 8 9 10 111213 14 15 16 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Jason Hogg has been named Executive Chairman of CYPFER.

HUB Cyber Security has appointed former PayPal and American Express executive Paul Parisi as its Global Chief Revenue Officer.

Cloud security startup Upwind has appointed Rinki Sethi as Chief Security Officer.

SAP security firm SecurityBridge announced the appointment of Roman Schubiger as the company’s new CRO.

Cybersecurity training and simulations provider SimSpace has appointed Peter Lee as Chief Executive Officer.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

New Campaigns Distribute Malware via Open Source Hacking Tools

Malware & Threats

New ClickFix Malware Variant ‘LightPerlGirl’ Targets Users in Stealthy Hack

Malware & Threats

Recent Langflow Vulnerability Exploited by Flodrix Botnet

Malware & Threats

TeamFiltration Abused in Entra ID Account Takeover Campaign

Malware & Threats

Thousands Download New Mandrake Android Spyware Version From Google Play

Malware & Threats

Network of 3,000 GitHub Accounts Used for Malware Distribution

Malware & Threats

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine

Malware & Threats

Google Boosts Chrome Protections Against Malicious Files

Malware & Threats

Is GhostEmperor Back? Sygnia Finds Clues in Recent Cyber Incident

Malware & Threats

Telegram Zero-Day Enabled Malware Delivery

Malware & Threats

CrowdStrike Incident Leveraged for Malware Delivery, Phishing, Scams

Cyberwarfare

Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns

Malware & Threats

APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer

Malware & Threats

Ukrainian Sentenced to Prison in US for Role in Zeus, IcedID Malware Operations

Data Breaches

Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident

Fraud & Identity Theft

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets With SSH-Snake and Open Source Tools

Incident Response

Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited

Malware & Threats

Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks

Malware & Threats

Europol Announces Crackdown on Cobalt Strike Servers Used by Cybercriminals

Malware & Threats

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys

Malware & Threats

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Malware & Threats

In Other News: Malware Delivered by ISP, Temu Spying, Critical Dataverse Vulnerability

Malware & Threats

Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity

Malware & Threats

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Mitigating AI Threats: Bridging the Gap Between AI and Legacy Security

Red Teaming AI: The Build Vs Buy Debate

The ZTNA Blind Spot: Why Unmanaged Devices Threaten Your Hybrid Workforce

Rethinking Success in Security: Why Climbing the Corporate Ladder Isn’t Always the Goal

Daily Briefing Newsletter