Malware & Threats

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days 

critical infrastructure, Malware & Threats, Microsoft, Patch Tuesday, remote code execution, Vulnerabilities, Zero-Day /

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days  2025-03-11 at 21:03 By Ryan Naraine Redmond ships major security updates with warnings that a half-dozen Windows vulnerabilities have already been exploited in the wild. The post Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days  appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days  Read More »

New Ballista IoT Botnet Linked to Italian Threat Actor

Ballista, botnet, Malware, Malware & Threats /

New Ballista IoT Botnet Linked to Italian Threat Actor 2025-03-11 at 19:05 By Eduard Kovacs Cato Networks has analyzed a new IoT botnet named Ballista, which targets TP-Link Archer routers.   The post New Ballista IoT Botnet Linked to Italian Threat Actor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

New Ballista IoT Botnet Linked to Italian Threat Actor Read More »

Mass Exploitation of Critical PHP Vulnerability Begins

exploited, Malware & Threats, PHP /

Mass Exploitation of Critical PHP Vulnerability Begins 2025-03-10 at 14:02 By Ionut Arghire GreyNoise warns of mass exploitation of a critical vulnerability in PHP leading to remote code execution on vulnerable servers. The post Mass Exploitation of Critical PHP Vulnerability Begins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Mass Exploitation of Critical PHP Vulnerability Begins Read More »

Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets

botnet, camera, Edimax, exploited, Featured, IoT Security, Malware & Threats, Mirai, Zero-Day /

Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets 2025-03-07 at 10:31 By Eduard Kovacs Multiple Mirai-based botnets are exploiting CVE-2025-1316, an Edimax IP camera vulnerability that allows remote command execution. The post Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets Read More »

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

Bybit, Cryptocurrency, Ethereum, Lazarus, Malware & Threats, Nation-State, North Korea, SafeWallet /

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist 2025-03-07 at 01:09 By Ryan Naraine The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file. The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist Read More »

BadBox Botnet Powered by 1 Million Android Devices Disrupted

BadBox, botnet, disruption, IoT Security, Malware & Threats, takedown /

BadBox Botnet Powered by 1 Million Android Devices Disrupted 2025-03-06 at 14:31 By Ionut Arghire A second iteration of the BadBox botnet that affected over one million Android devices has been partially disrupted. The post BadBox Botnet Powered by 1 Million Android Devices Disrupted appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

BadBox Botnet Powered by 1 Million Android Devices Disrupted Read More »

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

BeyondTrust, Malware & Threats, Nation-State, PostgreSQL, Silk Typhoon, supply chain, US Treasury /

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain 2025-03-05 at 18:02 By Ryan Naraine Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks. The post China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain appeared first on SecurityWeek.

React to this headline:

Loading spinner

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain Read More »

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices

botnet, Eleven11bot, IoT, IoT Security, Malware & Threats /

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices 2025-03-05 at 10:31 By Eduard Kovacs The Eleven11bot botnet has been described as one of the largest known DDoS botnets observed in recent years.  The post New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

New Eleven11bot DDoS Botnet Powered by 80,000 Hacked Devices Read More »

26 New Threat Groups Spotted in 2024: CrowdStrike

CrowdStrike, Malware & Threats, report /

26 New Threat Groups Spotted in 2024: CrowdStrike 2025-02-27 at 21:03 By Eduard Kovacs CrowdStrike has published its 2025 Global
Threat Report, which warns of faster breakout time and an increase in Chinese activity.  The post 26 New Threat Groups Spotted in 2024: CrowdStrike appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

26 New Threat Groups Spotted in 2024: CrowdStrike Read More »

New ‘Auto-Color’ Linux Malware Targets North America, Asia

Auto-Color, Linux malware, Malware, Malware & Threats /

New ‘Auto-Color’ Linux Malware Targets North America, Asia 2025-02-26 at 15:40 By Eduard Kovacs New Linux malware named Auto-Color, which allows full remote access to compromised devices, targets North America and Asia. The post New ‘Auto-Color’ Linux Malware Targets North America, Asia appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

New ‘Auto-Color’ Linux Malware Targets North America, Asia Read More »

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts

botnet, China, Malware & Threats, Microsoft 365, password spray /

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts 2025-02-25 at 19:11 By Eduard Kovacs A China-linked botnet powered by 130,000 hacked devices has targeted Microsoft 365 accounts with password spraying attacks. The post Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts Read More »

Edera Banks $15M for Kubernetes Workload Isolation Tech

Chainguard, cloud security, container, Edera, Kubernetes, M12, Malware & Threats, Series A /

Edera Banks $15M for Kubernetes Workload Isolation Tech 2025-02-25 at 16:53 By Ryan Naraine Seattle startup building technology to mitigate lateral movement and block “living off the land” techniques wins interest from investors. The post Edera Banks $15M for Kubernetes Workload Isolation Tech appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Edera Banks $15M for Kubernetes Workload Isolation Tech Read More »

Freelance Software Developers in North Korean Malware Crosshairs

AnyDesk, DeceptiveDevelopment, ESET, fake IT workers, LinkedIn, Malware & Threats, Nation-State, North Korea /

Freelance Software Developers in North Korean Malware Crosshairs 2025-02-21 at 18:01 By Ionut Arghire ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters. The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Freelance Software Developers in North Korean Malware Crosshairs Read More »

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines

APT41, China APT, cybercrime, Malware & Threats, Nation-State, PlugX, Ransomware, Shadowpad, Symantec, Trend Micro /

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines 2025-02-20 at 19:29 By Ryan Naraine China-linked cyberespionage toolkits are popping up in ransomware attacks, forcing defenders to rethink how they combat state-backed hackers. The post Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines Read More »

New FrigidStealer macOS Malware Distributed as Fake Browser Update

FrigidStealer, macOS malware, Malware, Malware & Threats /

New FrigidStealer macOS Malware Distributed as Fake Browser Update 2025-02-19 at 14:33 By Ionut Arghire A recently identified macOS infostealer named FrigidStealer has been distributed through a compromised website, as a fake browser update. The post New FrigidStealer macOS Malware Distributed as Fake Browser Update appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

New FrigidStealer macOS Malware Distributed as Fake Browser Update Read More »

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying

APT44, cyberespionage, Malware & Threats, Mandiant, Nation-State, QR code, Sandworm, Signal Messenger /

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying 2025-02-19 at 13:04 By Ryan Naraine Mandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted conversations. The post How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying appeared first on SecurityWeek.

React to this headline:

Loading spinner

How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying Read More »

Golang Backdoor Abuses Telegram for C&C Communication

backdoor, Malware, Malware & Threats /

Golang Backdoor Abuses Telegram for C&C Communication 2025-02-18 at 15:03 By Ionut Arghire A newly discovered Golang backdoor is abusing Telegram for communication with its command-and-control (C&C) server. The post Golang Backdoor Abuses Telegram for C&C Communication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Golang Backdoor Abuses Telegram for C&C Communication Read More »

Microsoft Warns of Improved XCSSET macOS Malware

macOS malware, Malware, Malware & Threats, XCSSET /

Microsoft Warns of Improved XCSSET macOS Malware 2025-02-18 at 13:33 By Ionut Arghire Microsoft has observed a new variant of the XCSSET malware being used in limited attacks against macOS users. The post Microsoft Warns of Improved XCSSET macOS Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Microsoft Warns of Improved XCSSET macOS Malware Read More »

New FinalDraft Malware Spotted in Espionage Campaign

FinalDraft, Malware, Malware & Threats /

New FinalDraft Malware Spotted in Espionage Campaign 2025-02-17 at 15:49 By Ionut Arghire A newly identified malware family abuses the Outlook mail service for communication, via the Microsoft Graph API. The post New FinalDraft Malware Spotted in Espionage Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

New FinalDraft Malware Spotted in Espionage Campaign Read More »

Scroll to Top