Malware & Threats Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

In Other News: Microsoft Finds AMD CPU Flaws, ZuRu macOS Malware Evolves, DoNot APT Targets Govs

Noteworthy stories that might have slipped under the radar: Microsoft shows attack against AMD processors, SentinelOne details latest ZuRu macOS malware version, Indian APT...

SecurityWeek News3 days ago

Malware & Threats

Legitimate Shellter Pen-Testing Tool Used in Malware Attacks

A stolen copy of Shellter Elite shows how easily legitimate security tools can be repurposed by threat actors when vetting and oversight fail.

Ionut Arghire5 days ago

Malware & Threats

North Korean Hackers Use Fake Zoom Updates to Install macOS Malware

SentinelOne says the fake Zoom update scam delivers ‘NimDoor’, a rare Nim-compiled backdoor.

Ionut ArghireJuly 3, 2025

Malware & Threats

Chinese Hackers Target Chinese Users With RAT, Rootkit

China-linked Silver Fox hacking group is targeting Chinese users with fake installers carrying a RAT and a rootkit.

Ionut ArghireJune 27, 2025

Malware & Threats

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation

The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware.

Ryan NaraineJune 12, 2024

Malware & Threats

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

The Windows vulnerability carries a CVSS severity score of 9.8/10 and can be exploited by via specially crafted malicious MSMQ packets.

Ryan NaraineJune 11, 2024

Malware & Threats

Adobe Ships Hefty Batch of Security Patches

Patch Tuesday: Adobe fixes critical flaws and warns of the risk of code execution attacks on Windows and macOS platforms.

Ryan NaraineJune 11, 2024

Malware & Threats

Arm Warns of Exploited Kernel Driver Vulnerability

Arm warns that CVE-2024-4610, a Mali GPU kernel driver vulnerability addressed two years ago, is exploited in attacks.

Ionut ArghireJune 11, 2024

Malware & Threats

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

Akamai warns that a Chinese threat actor is exploiting years-old remote code execution vulnerabilities in ThinkPHP in new attacks.

Ionut ArghireJune 6, 2024

Malware & Threats

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics

Google and Microsoft warn of elevated risks of cyber threats facing the 2024 Paris Olympics, especially from Russian threat actors.

Ionut ArghireJune 6, 2024

Malware & Threats

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

Multiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign.

Ionut ArghireJune 6, 2024

Malware & Threats

Researchers Show How Malware Could Steal Windows Recall Data

Cybersecurity researchers are demonstrating how malware could steal data collected by the new Windows Recall feature.

Eduard KovacsJune 5, 2024

Malware & Threats

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability

CISA has added an old Oracle WebLogic flaw tracked as CVE-2017-3506 to its known exploited vulnerabilities catalog.

Eduard KovacsJune 4, 2024

Malware & Threats

Identities of Cybercriminals Linked to Malware Loaders Revealed

Law enforcement reveals the identities of eight cybercriminals linked to recently disrupted malware loaders.

Ionut ArghireJune 3, 2024

Malware & Threats

PoC Published for Exploited Check Point VPN Vulnerability

PoC code targeting a recent Check Point VPN zero-day has been released as Censys identifies 14,000 internet-accessible appliances.

Ionut ArghireJune 3, 2024

Malware & Threats

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers

Over 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable.

Ionut ArghireMay 31, 2024

Malware & Threats

Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors

Malicious campaign exploits high-severity XSS flaws in three WordPress plugins to backdoor websites.

Ionut ArghireMay 30, 2024

Malware & Threats

TrickBot and Other Malware Droppers Disrupted by Law Enforcement

The TrickBot botnet and other malware droppers have been targeted by international law enforcement in Operation Endgame.

Ionut ArghireMay 30, 2024

Malware & Threats

Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication

Okta raises the alarm on credential stuffing attacks targeting endpoints used for cross-origin authentication.

Ionut ArghireMay 30, 2024

Malware & Threats

Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested

The US announced that the 911 S5 (Cloud Router) botnet, likely the world’s largest, has been dismantled and its administrator arrested.

Eduard KovacsMay 30, 2024

Malware & Threats

Check Point VPN Attacks Involve Zero-Day Exploited Since April

The recently disclosed Check Point VPN attacks involve the zero-day vulnerability CVE-2024-24919, which allows hackers to obtain passwords.

Eduard KovacsMay 30, 2024

ICS/OT

JAVS Courtroom Audio-Visual Software Installer Serves Backdoor

Backdoored JAVS courtroom recording and management software installer puts thousands at risk of complete takeover.

Ionut ArghireMay 24, 2024

Malware & Threats

New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data

The Antidot Android banking trojan snoops on users and steals their credentials, contacts, and SMS messages.

Ionut ArghireMay 17, 2024

Malware & Threats

Microsoft Quick Assist Tool Abused for Ransomware Delivery

The Black Basta group abuses remote connection tool Quick Assist in vishing attacks leading to ransomware deployment.

Ionut ArghireMay 17, 2024

Page 14 of 301« First ‹ Previous 10 11 12 131415 16 17 18 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Jessica Newman has joined Sophos as General Manager of Global Cyber Insurance.

Breach and attack simulation solutions provider AttackIQ has appointed Pete Luban as Field Chief Information Security Officer.

Matthew Cowell has assumed the role of VP of Strategic Alliances at Nozomi Networks. He previously served in the same role at Dragos.

Bret Arsenault is retiring from his full-time role after 35 years at Microsoft.

Social engineering defense platform Doppel has appointed Bobby Ford as Chief Strategy and Experience Officer.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

In Other News: Microsoft Finds AMD CPU Flaws, ZuRu macOS Malware Evolves, DoNot APT Targets Govs

Malware & Threats

Legitimate Shellter Pen-Testing Tool Used in Malware Attacks

Malware & Threats

North Korean Hackers Use Fake Zoom Updates to Install macOS Malware

Malware & Threats

Chinese Hackers Target Chinese Users With RAT, Rootkit

Malware & Threats

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation

Malware & Threats

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

Malware & Threats

Adobe Ships Hefty Batch of Security Patches

Malware & Threats

Arm Warns of Exploited Kernel Driver Vulnerability

Malware & Threats

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

Malware & Threats

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics

Malware & Threats

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

Malware & Threats

Researchers Show How Malware Could Steal Windows Recall Data

Malware & Threats

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability

Malware & Threats

Identities of Cybercriminals Linked to Malware Loaders Revealed

Malware & Threats

PoC Published for Exploited Check Point VPN Vulnerability

Malware & Threats

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers

Malware & Threats

Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors

Malware & Threats

TrickBot and Other Malware Droppers Disrupted by Law Enforcement

Malware & Threats

Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication

Malware & Threats

Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested

Malware & Threats

Check Point VPN Attacks Involve Zero-Day Exploited Since April

ICS/OT

JAVS Courtroom Audio-Visual Software Installer Serves Backdoor

Malware & Threats

New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data

Malware & Threats

Microsoft Quick Assist Tool Abused for Ransomware Delivery

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Why Sincerity Is a Strategic Asset in Cybersecurity

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Daily Briefing Newsletter