Malware & Threats

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

Bybit, Cryptocurrency, Ethereum, Lazarus, Malware & Threats, Nation-State, North Korea, SafeWallet /

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist 2025-03-07 at 01:09 By Ryan Naraine The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file. The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on SecurityWeek. This article is […]

React to this headline:

Loading spinner

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist Read More »

BadBox Botnet Powered by 1 Million Android Devices Disrupted

BadBox, botnet, disruption, IoT Security, Malware & Threats, takedown /

BadBox Botnet Powered by 1 Million Android Devices Disrupted 2025-03-06 at 14:31 By Ionut Arghire A second iteration of the BadBox botnet that affected over one million Android devices has been partially disrupted. The post BadBox Botnet Powered by 1 Million Android Devices Disrupted appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

BadBox Botnet Powered by 1 Million Android Devices Disrupted Read More »

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

BeyondTrust, Malware & Threats, Nation-State, PostgreSQL, Silk Typhoon, supply chain, US Treasury /

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain 2025-03-05 at 18:02 By Ryan Naraine Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks. The post China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain appeared first on SecurityWeek.

React to this headline:

Loading spinner

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain Read More »

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices

botnet, Eleven11bot, IoT, IoT Security, Malware & Threats /

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices 2025-03-05 at 10:31 By Eduard Kovacs The Eleven11bot botnet has been described as one of the largest known DDoS botnets observed in recent years.  The post New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices Read More »

26 New Threat Groups Spotted in 2024: CrowdStrike

CrowdStrike, Malware & Threats, report /

26 New Threat Groups Spotted in 2024: CrowdStrike 2025-02-27 at 21:03 By Eduard Kovacs CrowdStrike has published its 2025 Global
Threat Report, which warns of faster breakout time and an increase in Chinese activity.  The post 26 New Threat Groups Spotted in 2024: CrowdStrike appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

26 New Threat Groups Spotted in 2024: CrowdStrike Read More »

New ‘Auto-Color’ Linux Malware Targets North America, Asia

Auto-Color, Linux malware, Malware, Malware & Threats /

New ‘Auto-Color’ Linux Malware Targets North America, Asia 2025-02-26 at 15:40 By Eduard Kovacs New Linux malware named Auto-Color, which allows full remote access to compromised devices, targets North America and Asia. The post New ‘Auto-Color’ Linux Malware Targets North America, Asia appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

New ‘Auto-Color’ Linux Malware Targets North America, Asia Read More »

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts

botnet, China, Malware & Threats, Microsoft 365, password spray /

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts 2025-02-25 at 19:11 By Eduard Kovacs A China-linked botnet powered by 130,000 hacked devices has targeted Microsoft 365 accounts with password spraying attacks. The post Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts Read More »

Edera Banks $15M for Kubernetes Workload Isolation Tech

Chainguard, cloud security, container, Edera, Kubernetes, M12, Malware & Threats, Series A /

Edera Banks $15M for Kubernetes Workload Isolation Tech 2025-02-25 at 16:53 By Ryan Naraine Seattle startup building technology to mitigate lateral movement and block “living off the land” techniques wins interest from investors. The post Edera Banks $15M for Kubernetes Workload Isolation Tech appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Edera Banks $15M for Kubernetes Workload Isolation Tech Read More »

Freelance Software Developers in North Korean Malware Crosshairs

AnyDesk, DeceptiveDevelopment, ESET, fake IT workers, LinkedIn, Malware & Threats, Nation-State, North Korea /

Freelance Software Developers in North Korean Malware Crosshairs 2025-02-21 at 18:01 By Ionut Arghire ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters. The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Freelance Software Developers in North Korean Malware Crosshairs Read More »

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines

APT41, China APT, cybercrime, Malware & Threats, Nation-State, PlugX, Ransomware, Shadowpad, Symantec, Trend Micro /

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines 2025-02-20 at 19:29 By Ryan Naraine China-linked cyberespionage toolkits are popping up in ransomware attacks, forcing defenders to rethink how they combat state-backed hackers. The post Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines Read More »

New FrigidStealer macOS Malware Distributed as Fake Browser Update

FrigidStealer, macOS malware, Malware, Malware & Threats /

New FrigidStealer macOS Malware Distributed as Fake Browser Update 2025-02-19 at 14:33 By Ionut Arghire A recently identified macOS infostealer named FrigidStealer has been distributed through a compromised website, as a fake browser update. The post New FrigidStealer macOS Malware Distributed as Fake Browser Update appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

New FrigidStealer macOS Malware Distributed as Fake Browser Update Read More »

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying

APT44, cyberespionage, Malware & Threats, Mandiant, Nation-State, QR code, Sandworm, Signal Messenger /

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying 2025-02-19 at 13:04 By Ryan Naraine Mandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted conversations. The post How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying appeared first on SecurityWeek.

React to this headline:

Loading spinner

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying Read More »

Golang Backdoor Abuses Telegram for C&C Communication

backdoor, Malware, Malware & Threats /

Golang Backdoor Abuses Telegram for C&C Communication 2025-02-18 at 15:03 By Ionut Arghire A newly discovered Golang backdoor is abusing Telegram for communication with its command-and-control (C&C) server. The post Golang Backdoor Abuses Telegram for C&C Communication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Golang Backdoor Abuses Telegram for C&C Communication Read More »

Microsoft Warns of Improved XCSSET macOS Malware

macOS malware, Malware, Malware & Threats, XCSSET /

Microsoft Warns of Improved XCSSET macOS Malware 2025-02-18 at 13:33 By Ionut Arghire Microsoft has observed a new variant of the XCSSET malware being used in limited attacks against macOS users. The post Microsoft Warns of Improved XCSSET macOS Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Microsoft Warns of Improved XCSSET macOS Malware Read More »

New FinalDraft Malware Spotted in Espionage Campaign

FinalDraft, Malware, Malware & Threats /

New FinalDraft Malware Spotted in Espionage Campaign 2025-02-17 at 15:49 By Ionut Arghire A newly identified malware family abuses the Outlook mail service for communication, via the Microsoft Graph API. The post New FinalDraft Malware Spotted in Espionage Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

New FinalDraft Malware Spotted in Espionage Campaign Read More »

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day

CVE-2025-21391, CVE-2025-21418, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities, Zero-Day /

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day 2025-02-11 at 22:06 By Ryan Naraine The Microsoft Patch Tuesday machine hummed loudly this month urgent fixes for a pair of already-exploited Windows zero-days. The post Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day Read More »

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks

Adobe, Adobe Commerce, Malware & Threats, Patch Tuesday, Photoshop, remote code execution, Vulnerabilities /

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks 2025-02-11 at 21:33 By Ryan Naraine Patch Tuesday: Adobe patches 45 vulnerabilities across multiple products and warn of remote code execution exploitation risks. The post Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks Read More »

Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack 

apple, Citizen Lab, CVE-2025-24200, iOS, iOS 18.3.1, Malware & Threats, Nation-State, USB Restricted Mode /

Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack  2025-02-10 at 22:01 By Ryan Naraine Cupertino’s security response team said the flaw was used in “an extremely sophisticated attack against specific targeted individuals.”  The post Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack  appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack  Read More »

Can AI Early Warning Systems Reboot the Threat Intel Industry?

APT, Artificial Intelligence, China, Google, Iran, Malware & Threats, Microsoft, North Korea, OpenAI, Threat Intelligence /

Can AI Early Warning Systems Reboot the Threat Intel Industry? 2025-02-10 at 13:02 By Ryan Naraine News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry? The post Can AI Early Warning Systems Reboot the

React to this headline:

Loading spinner

Can AI Early Warning Systems Reboot the Threat Intel Industry? Read More »

1,000 Apps Used in Malicious Campaign Targeting Android Users in India

cybercrime, FatBoyPanel, Malware & Threats, multi-factor authentication, Zimperium /

1,000 Apps Used in Malicious Campaign Targeting Android Users in India 2025-02-06 at 20:34 By Ionut Arghire Zimperium warns that threat actors have stolen the information of tens of thousands of Android users in India using over 1,000 malicious applications. The post 1,000 Apps Used in Malicious Campaign Targeting Android Users in India appeared first

React to this headline:

Loading spinner

1,000 Apps Used in Malicious Campaign Targeting Android Users in India Read More »

Scroll to Top