Malware & Threats Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

Medusa Ransomware Uses Malicious Driver to Disable Security Tools

The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.

Ionut Arghire20 hours ago

Malware & Threats

300 Malicious ‘Vapor’ Apps Hosted on Google Play Had 60 Million Downloads

Over 300 malicious applications displaying intrusive full-screen interstitial video ads amassed more than 60 million downloads on Google Play.

Ionut Arghire5 days ago

Malware & Threats

Chinese Hacking Group MirrorFace Targeting Europe

Chinese hacking group MirrorFace has targeted a Central European diplomatic institute with the Anel backdoor and AsyncRAT.

Ionut Arghire6 days ago

Malware & Threats

Microsoft Warns of New StilachiRAT Malware

Microsoft has shared details on StilachiRAT, an evasive and persistent piece of malware that facilitates sensitive data theft.

Eduard Kovacs6 days ago

Malware & Threats

11 State-Sponsored APTs Exploiting LNK Files for Espionage, Data Theft

ZDI has uncovered 1,000 malicious .lnk files used by state-sponsored and cybercrime threat actors to execute malicious commands.

Eduard Kovacs7 days ago

Malware & Threats

Exploit Code for Apache Tomcat RCE Vulnerability Published on Chinese Forum

Exploits swirling for remote code execution vulnerability (CVE-2025-24813) in open-source Apache Tomcat web server.

Ryan NaraineMarch 17, 2025

Artificial Intelligence

DeepSeek’s Malware-Generation Capabilities Put to Test

Researchers have analyzed the ability of the Chinese gen-AI DeepSeek to create malware such as ransomware and keyloggers.

Eduard KovacsMarch 13, 2025

Malware & Threats

Microsoft Flags Six Active Zero-Days, Patches 57 Flaws: Patch Tuesday

Redmond ships major security updates with warnings that a half-dozen Windows vulnerabilities have already been exploited in the wild.

Ryan NaraineMarch 11, 2025

Malware & Threats

New Ballista IoT Botnet Linked to Italian Threat Actor

Cato Networks has analyzed a new IoT botnet named Ballista, which targets TP-Link Archer routers.

Eduard KovacsMarch 11, 2025

Malware & Threats

Trump Coins Used as Lure in Malware Campaign

Binance is being spoofed in an email campaign using free TRUMP Coins as a lure leading to the installation of the ConnectWise RAT.

Kevin TownsendMarch 10, 2025

Malware & Threats

Critical PHP Vulnerability Under Mass Exploitation

GreyNoise warns of mass exploitation of a critical vulnerability in PHP leading to remote code execution on vulnerable servers.

Ionut ArghireMarch 10, 2025

Edimax CVE-2025-1316 exploited by botnets

IoT Security

Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets

Multiple Mirai-based botnets are exploiting CVE-2025-1316, an Edimax IP camera vulnerability that allows remote command execution.

Eduard KovacsMarch 7, 2025

Malware & Threats

Microsoft Says One Million Devices Impacted by Infostealer Campaign

Microsoft has uncovered a malvertising campaign that redirected users to information stealers hosted on GitHub.

Ionut ArghireMarch 7, 2025

Malware & Threats

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file.

Ryan NaraineMarch 6, 2025

IoT Security

BadBox Botnet Powered by 1 Million Android Devices Disrupted

A second iteration of the BadBox botnet that affected over one million Android devices has been partially disrupted.

Ionut ArghireMarch 6, 2025

China's Salt Typhoon hacks US telecoms firms

Malware & Threats

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks.

Ryan NaraineMarch 5, 2025

IoT Security

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices

The Eleven11bot botnet has been described as one of the largest known DDoS botnets observed in recent years.

Eduard KovacsMarch 5, 2025

Malware & Threats

26 New Threat Groups Spotted in 2024: CrowdStrike

CrowdStrike has published its 2025 Global Threat Report, which warns of faster breakout time and an increase in Chinese activity.

Eduard KovacsFebruary 27, 2025

Page 2 of 494‹ Previous 123 4 5 6 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

Medusa Ransomware Uses Malicious Driver to Disable Security Tools

Malware & Threats

300 Malicious ‘Vapor’ Apps Hosted on Google Play Had 60 Million Downloads

Malware & Threats

Chinese Hacking Group MirrorFace Targeting Europe

Malware & Threats

Microsoft Warns of New StilachiRAT Malware

Malware & Threats

11 State-Sponsored APTs Exploiting LNK Files for Espionage, Data Theft

Malware & Threats

Exploit Code for Apache Tomcat RCE Vulnerability Published on Chinese Forum

Artificial Intelligence

DeepSeek’s Malware-Generation Capabilities Put to Test

Malware & Threats

Microsoft Flags Six Active Zero-Days, Patches 57 Flaws: Patch Tuesday

Malware & Threats

New Ballista IoT Botnet Linked to Italian Threat Actor

Malware & Threats

Trump Coins Used as Lure in Malware Campaign

Malware & Threats

Critical PHP Vulnerability Under Mass Exploitation

IoT Security

Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets

Malware & Threats

Microsoft Says One Million Devices Impacted by Infostealer Campaign

Malware & Threats

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

IoT Security

BadBox Botnet Powered by 1 Million Android Devices Disrupted

Malware & Threats

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

IoT Security

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices

Malware & Threats

26 New Threat Groups Spotted in 2024: CrowdStrike

Featured

Government

Despite Rip-and-Replace Efforts, FCC Suspects Banned Chinese Telecom Providers Still Active in US

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Phishing

Scareware Combined With Phishing in Attacks Targeting macOS Users

Funding/M&A

Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash

Artificial Intelligence

ChatGPT Tool Vulnerability Exploited Against US Government Organizations

Latest News

Government

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Vulnerabilities

Russian Firm Offers $4 Million for Telegram Exploits

Security Architecture

Webinar Tomorrow: Which Security Testing Approach is Right for You?

Government

US Lifts Sanctions Against Crypto Mixer Tornado Cash

Data Protection

NetSfere Launches Quantum-Resilient Messaging Platform for Enterprise and Government Use

Ransomware

Albabat Ransomware Expands Targets, Abuses GitHub

Daily Briefing Newsletter