Malware & Threats Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

Google Sues Operators of 10-Million-Device Badbox 2.0 Botnet

Google has filed a lawsuit against the Badbox 2.0 botnet operators, after identifying over 10 million infected Android devices.

Ionut Arghire5 hours ago

SVG files hide JavaScript code for redirection

Malware & Threats

Threat Actors Use SVG Smuggling for Browser-Native Redirection

Obfuscated JavaScript code is embedded within SVG files for browser-native redirection to malicious pages.

Ionut Arghire3 days ago

Malware & Threats

New Interlock RAT Variant Distributed via FileFix Attacks

The Interlock ransomware group has partnered with the KongTuke TDS to distribute a new RAT variant via FileFix attacks.

Ionut Arghire4 days ago

Malware & Threats

In Other News: Microsoft Finds AMD CPU Flaws, ZuRu macOS Malware Evolves, DoNot APT Targets Govs

Noteworthy stories that might have slipped under the radar: Microsoft shows attack against AMD processors, SentinelOne details latest ZuRu macOS malware version, Indian APT...

SecurityWeek NewsJuly 11, 2025

Malware & Threats

Book Review: Infected – A Candid Look at VirusTotal’s Birth and Legacy

Part entrepreneurial adventure, part security history, Bernardo Quintero's 'Infected' documents how the VirusTotal side project became a threat-intel cornerstone.

Ryan NaraineJanuary 22, 2025

Malware & Threats

Russian Cyberspies Caught Spear-Phishing with QR Codes, WhatsApp Groups

Microsoft researchers catches Russia's Star Blizzard hackers spear-phishing with QR codes and WhatsApp group chats.

Ryan NaraineJanuary 16, 2025

Malware & Threats

North Korean Hackers Targeting Freelance Software Developers

North Korea-linked Lazarus Group is targeting freelance software developers to compromise the supply chain.

Ionut ArghireJanuary 16, 2025

Government

FBI Uses Malware’s Own ‘Self-Delete’ Trick to Erase Chinese PlugX From US Computers

Law enforcement turns the PlugX malware’s own self-delete mechanism against it, nuking the China-linked trojan from thousands of US machines.

Ryan NaraineJanuary 15, 2025

Malware & Threats

Adobe: Critical Code Execution Flaws in Photoshop

Patch Tuesday: Adobe ships patches for more than a dozen security defects in a wide range of software products.

Ryan NaraineJanuary 14, 2025

Malware & Threats

Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days

Patch Tuesday: Microsoft's January Patch Tuesday rollout includes fixes for 160 security defects, the largest number of CVEs addressed in any single month since...

Ryan NaraineJanuary 14, 2025

Malware & Threats

Snyk Says ‘Malicious’ NPM Packages Part of Research Project

Apparently malicious NPM packages linked to Snyk raised some concerns, but the security firm clarified that it’s part of a research project.

Eduard KovacsJanuary 14, 2025

Malware & Threats

CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks

Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.

Ionut ArghireJanuary 14, 2025

Data Breaches

Infostealer Infections Lead to Telefonica Ticketing System Breach

Infostealer malware allowed threat actors to compromise Telefonica employees’ credentials and access the company’s internal ticketing system.

Ionut ArghireJanuary 14, 2025

Malware & Threats

Infostealer Masquerades as PoC Code Targeting Recent LDAP Vulnerability

A fake proof-of-concept (PoC) exploit for a recent LDAP vulnerability distributes information stealer malware.

Ionut ArghireJanuary 13, 2025

Malware & Threats

Banshee macOS Malware Expands Targeting

The latest version of the Banshee macOS information stealer no longer checks if the infected systems have the Russian language installed.

Ionut ArghireJanuary 10, 2025

Malware & Threats

Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies

Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.

Eduard KovacsJanuary 9, 2025

Malware & Threats

Ivanti Warns of New Zero-Day Attacks Hitting Connect Secure Product

Ivanti confirms zero-day exploitation of a remotely exploitable code execution flaw in its Connect Security product line.

Ryan NaraineJanuary 8, 2025

Malware & Threats

Wallet Drainer Malware Used to Steal $500 Million in Cryptocurrency in 2024

Close to $500 million in cryptocurrency from over 332,000 addresses was stolen in 2024 using wallet drainer malware.

Ionut ArghireJanuary 6, 2025

Malware & Threats

FireScam Android Malware Packs Infostealer, Spyware Capabilities

The FireScam Android infostealer monitors app notifications and harvests credentials and financial data and sends it to a Firebase database.

Ionut ArghireJanuary 3, 2025

Malware & Threats

In Other News: McDonald’s API Hacking, Netflix Fine, Malware Kills ICS Process

Noteworthy stories that might have slipped under the radar: McDonald’s API hacking, Netflix fined nearly $5 million in Netherlands, experimental malware killing ICS process.

SecurityWeek NewsDecember 20, 2024

IoT Security

Botnet of 190,000 BadBox-Infected Android Devices Discovered

Bitsight has discovered a BadBox botnet consisting of over 190,000 Android devices, mainly Yandex smart TVs and Hisense smartphones.

Ionut ArghireDecember 20, 2024

Malware & Threats

Juniper Warns of Mirai Botnet Targeting Session Smart Routers

Juniper Networks says a Mirai botnet is ensnaring session smart router devices that are using default passwords.

Ionut ArghireDecember 19, 2024

Malware & Threats

FBI Warns of HiatusRAT Attacks on Cameras, DVR Systems

FBI says HiatusRAT’s operators were seen scanning for web cameras and DVR systems affected by years-old vulnerabilities.

Ionut ArghireDecember 17, 2024

Government

Android Zero-Day Exploited in Spyware Campaigns, Amnesty International Points to Cellebrite

Israeli forensics firm Cellebrite has been linked to an Android zero-day used to secretly install spyware on Serbian journalists' phones.

Ryan NaraineDecember 16, 2024

Page 8 of 301« First ‹ Previous 4 5 6 789 10 11 12 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Coro, a provider of cybersecurity solutions for SMBs, has appointed Joe Sykora as CEO.

SonicWall has hired Rajnish Mishra as Senior Vice President and Chief Development Officer.

Kenna Security co-founder Ed Bellis has joined Empirical Security as Chief Executive Officer.

Robert Shaker II has joined application security firm ActiveState as Chief Product and Technology Officer.

MorganFranklin Cyber has promoted Nick Stallone and Ferdinand Hamada into newly created roles.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

Google Sues Operators of 10-Million-Device Badbox 2.0 Botnet

Malware & Threats

Threat Actors Use SVG Smuggling for Browser-Native Redirection

Malware & Threats

New Interlock RAT Variant Distributed via FileFix Attacks

Malware & Threats

In Other News: Microsoft Finds AMD CPU Flaws, ZuRu macOS Malware Evolves, DoNot APT Targets Govs

Malware & Threats

Book Review: Infected – A Candid Look at VirusTotal’s Birth and Legacy

Malware & Threats

Russian Cyberspies Caught Spear-Phishing with QR Codes, WhatsApp Groups

Malware & Threats

North Korean Hackers Targeting Freelance Software Developers

Government

FBI Uses Malware’s Own ‘Self-Delete’ Trick to Erase Chinese PlugX From US Computers

Malware & Threats

Adobe: Critical Code Execution Flaws in Photoshop

Malware & Threats

Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days

Malware & Threats

Snyk Says ‘Malicious’ NPM Packages Part of Research Project

Malware & Threats

CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks

Data Breaches

Infostealer Infections Lead to Telefonica Ticketing System Breach

Malware & Threats

Infostealer Masquerades as PoC Code Targeting Recent LDAP Vulnerability

Malware & Threats

Banshee macOS Malware Expands Targeting

Malware & Threats

Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies

Malware & Threats

Ivanti Warns of New Zero-Day Attacks Hitting Connect Secure Product

Malware & Threats

Wallet Drainer Malware Used to Steal $500 Million in Cryptocurrency in 2024

Malware & Threats

FireScam Android Malware Packs Infostealer, Spyware Capabilities

Malware & Threats

In Other News: McDonald’s API Hacking, Netflix Fine, Malware Kills ICS Process

IoT Security

Botnet of 190,000 BadBox-Infected Android Devices Discovered

Malware & Threats

Juniper Warns of Mirai Botnet Targeting Session Smart Routers

Malware & Threats

FBI Warns of HiatusRAT Attacks on Cameras, DVR Systems

Government

Android Zero-Day Exploited in Spyware Campaigns, Amnesty International Points to Cellebrite

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Why Sincerity Is a Strategic Asset in Cybersecurity

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Daily Briefing Newsletter