Malware & Threats

Chinese Cybercrime Group in Spotlight for Record Campaign Pace

Chinese Cybercrime Group in Spotlight for Record Campaign Pace 2026-06-04 at 16:06 By Ionut Arghire Relying on social engineering, the hacking group engages in credential phishing, malware distribution, and fraud activities. The post Chinese Cybercrime Group in Spotlight for Record Campaign Pace appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original […]

Chinese Cybercrime Group in Spotlight for Record Campaign Pace Read More »

Hackers Target Global Stock Exchange in Espionage Operation

Hackers Target Global Stock Exchange in Espionage Operation 2026-06-03 at 20:19 By Eduard Kovacs The attackers had access to a senior executive’s email account for 150 days and exfiltrated data for months. The post Hackers Target Global Stock Exchange in Espionage Operation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Hackers Target Global Stock Exchange in Espionage Operation Read More »

In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks

In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks 2026-05-29 at 21:23 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Trump Mobile exposes customer data, phishers target the 2026 FIFA World Cup, CISA responds to recent supply chain attacks. The post In Other

In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks Read More »

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks 2026-05-29 at 06:17 By Kevin Townsend Researchers warn GreyVibe’s extensive use of ChatGPT, Gemini, and other AI tools offers a glimpse into how future cybercriminal and state-aligned groups will operate. The post Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks appeared first on SecurityWeek. This article is

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks Read More »

New BTMOB Android Malware Enables Full Device Takeover

New BTMOB Android Malware Enables Full Device Takeover 2026-05-28 at 16:05 By Ionut Arghire Delivered via phishing lures, the malware combines financial theft with data exfiltration and remote access. The post New BTMOB Android Malware Enables Full Device Takeover appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

New BTMOB Android Malware Enables Full Device Takeover Read More »

Iranian APT Targets Aviation, Software Companies With Updated Tools

Iranian APT Targets Aviation, Software Companies With Updated Tools 2026-05-26 at 17:32 By Ionut Arghire Nimbus Manticore has continued its operations during and after the US military campaign against Iran. The post Iranian APT Targets Aviation, Software Companies With Updated Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Iranian APT Targets Aviation, Software Companies With Updated Tools Read More »

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available 2026-05-26 at 14:02 By SecurityWeek News Register to enjoy free access and explore the tools, strategies, and frameworks needed to build a resilient security program for a world where every minute counts. The post Watch on Demand: Threat Detection & Incident Response

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available Read More »

In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking

In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking 2026-05-22 at 17:28 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: CISA contractor exposes credentials, Mythos testing and new features, Huawei router flaw triggered telecom blackout. The post In Other News: Industrial Router Exploitation, CISA KEV Nomination

In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking Read More »

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack 2026-05-20 at 14:21 By Ionut Arghire A compromised maintainer account was used to publish malicious package versions across the @antv namespace. The post Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack appeared first on SecurityWeek. This article is an

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack Read More »

Virtual Event Today: Threat Detection & Incident Response Summit

Virtual Event Today: Threat Detection & Incident Response Summit 2026-05-20 at 13:02 By SecurityWeek News The speed and sophistication of cyberattacks have outpaced traditional defense methods. Please join us online today from 11AM -4PM ET for the Threat Detection & Incident Response Summit. Don’t miss this virtual event as we explore how to cut through alert

Virtual Event Today: Threat Detection & Incident Response Summit Read More »

Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’ 

Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’  2026-05-19 at 19:07 By Eduard Kovacs  Fox Tempest provides a service that cybercriminals use to distribute ransomware and other malware disguised as legitimate software. The post Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’  Read More »

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks 2026-05-19 at 16:58 By Kevin Townsend Attackers are increasingly abusing Microsoft’s decades-old MSHTA utility to stealthily deliver stealers, loaders, and persistent malware through phishing, fake software downloads, and LOLBIN-based attack chains. The post Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks appeared first

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks Read More »

In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws

In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws 2026-05-15 at 18:30 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: Nvidia cloud gaming data breach, Android 17 security upgrades, FBI warning after ShinyHunters hacks Canvas. The post In Other News: Big Tech

In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws Read More »

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code 2026-05-15 at 14:32 By Ionut Arghire The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards. The post TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code Read More »

Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns

Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns 2026-05-14 at 18:25 By Ionut Arghire Salt Typhoon has hit an energy entity in Azerbaijan. Twill Typhoon has targeted Asian entities with an updated RAT. The post Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns appeared first on SecurityWeek. This article is an excerpt from

Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns Read More »

Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware

Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware 2026-05-12 at 17:34 By Kevin Townsend CRPx0 is a complex, stealthy malware campaign that targets macOS and Windows systems, and appears to have Linux capabilities in development. The post Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware appeared first on SecurityWeek. This article is an

Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware Read More »

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack 2026-05-12 at 13:20 By Ionut Arghire Over 400 malicious versions of 170 packages were published as part of the new Mini Shai-Hulud campaign. The post TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack Read More »

In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner

In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner 2026-05-08 at 18:03 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: US gov targets 72-hour patch cycles, malware uses Windows Phone Link to steal OTPs, spy operation targets Eurasian drone industry. The post In Other News: Train

In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner Read More »

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials 2026-05-08 at 11:32 By Ionut Arghire The malware framework targets web applications and cloud environments, including AWS, Docker, Kubernetes, and more. The post ‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials Read More »

Scroll to Top