Malware & Threats

Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions

Fast16, Iran, Malware, Malware & Threats, nuclear, Stuxnet /

Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions 2026-04-24 at 19:09 By Ionut Arghire It targeted high-precision calculation software to tamper with results and packed a self-propagation mechanism. The post Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions Read More »

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

backdoor, Cisco, Firestarter, Malware & Threats /

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor 2026-04-24 at 14:35 By Ionut Arghire The malware provides remote access and control of infected devices and maintains post-patching persistence. The post US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor Read More »

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention 

energy, Lotus Wiper, Malware & Threats, power grid, Venezuela, wiper /

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention  2026-04-22 at 15:49 By Ionut Arghire Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files. The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention  Read More »

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

botnet, D-Link, Malware & Threats, Mirai, router /

Mirai Botnet Targets Flaw in Discontinued D-Link Routers 2026-04-22 at 14:47 By Ionut Arghire The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication. The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Mirai Botnet Targets Flaw in Discontinued D-Link Routers Read More »

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

AI, Artificial Intelligence, Malware, Malware & Threats, Vulnerabilities, vulnerability /

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals 2026-04-22 at 13:47 By Eduard Kovacs Researchers discovered a remote code execution vulnerability and cybercriminals are using its reputation to deliver malware. The post Google Antigravity in Crosshairs of Security Researchers, Cybercriminals appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals Read More »

Dozens of Malicious Crypto Apps Land in Apple App Store

apple, Apple App Store, China, Cryptocurrency, Malware, Malware & Threats, Mobile & Wireless /

Dozens of Malicious Crypto Apps Land in Apple App Store 2026-04-21 at 17:36 By Ionut Arghire Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys. The post Dozens of Malicious Crypto Apps Land in Apple App Store appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Dozens of Malicious Crypto Apps Land in Apple App Store Read More »

ZionSiphon Malware Targets ICS in Water Facilities

Featured, ICS, ICS malware, ICS/OT, Israel, Malware & Threats, OT, Water, ZionSiphon /

ZionSiphon Malware Targets ICS in Water Facilities 2026-04-17 at 14:32 By Eduard Kovacs The malware is configured to operate on systems associated with Israeli water treatment and desalination plants. The post ZionSiphon Malware Targets ICS in Water Facilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

ZionSiphon Malware Targets ICS in Water Facilities Read More »

100 Chrome Extensions Steal User Data, Create Backdoor

backdoor, browser extension, Chrome extension, extension, Malware & Threats /

100 Chrome Extensions Steal User Data, Create Backdoor 2026-04-15 at 16:34 By Ionut Arghire Published through five accounts, the extensions appear part of a coordinated campaign based on shared C&C infrastructure. The post 100 Chrome Extensions Steal User Data, Create Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

100 Chrome Extensions Steal User Data, Create Backdoor Read More »

$10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks

adware, AV killer, Featured, Malware & Threats, PUP /

$10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks 2026-04-15 at 14:29 By Eduard Kovacs Researchers found adware capable of killing cybersecurity products and pushing more dangerous payloads to infected systems. The post $10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks appeared first on

$10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks Read More »

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads

CPU-Z, CPUID, Featured, Malware, Malware & Threats, STX RAT, supply chain attack, Supply Chain Security, watering hole /

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads 2026-04-13 at 15:44 By Eduard Kovacs Download links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT. The post CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads Read More »

Evasive Masjesu DDoS Botnet Targets IoT Devices

botnet, DDoS, Malware & Threats, Masjesu /

Evasive Masjesu DDoS Botnet Targets IoT Devices 2026-04-08 at 15:06 By Ionut Arghire Focused on persistence, the botnet does not engage in widespread infection and avoids blacklisted IPs and critical infrastructure entities. The post Evasive Masjesu DDoS Botnet Targets IoT Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Evasive Masjesu DDoS Botnet Targets IoT Devices Read More »

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking

APT, APT28, disrupted, Featured, Forest Blizzard, Government, Malware & Threats, Nation-State, Russia, takedown /

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking 2026-04-08 at 15:06 By Eduard Kovacs The APT28 threat group exploited vulnerable TP-Link and MikroTik routers to conduct adversary-in-the-middle (AitM) attacks. The post US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking appeared first on SecurityWeek. This article is an excerpt from

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking Read More »

Guardarian Users Targeted With Malicious Strapi NPM Packages

Malware & Threats, NPM, Strapi, supply chain attack, Supply Chain Security /

Guardarian Users Targeted With Malicious Strapi NPM Packages 2026-04-06 at 15:32 By Ionut Arghire Hackers published 36 NPM packages posing as Strapi plugins to execute shells, escape containers, and harvest credentials. The post Guardarian Users Targeted With Malicious Strapi NPM Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Guardarian Users Targeted With Malicious Strapi NPM Packages Read More »

In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware

In Other News, Malware & Threats /

In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware 2026-04-03 at 17:52 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: Symantec vulnerability, anti-ClickFix mechanism added to macOS, FBI hack classified as major incident. The post In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit

In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware Read More »

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

Malware & Threats, React2Shell, UAT-10608 /

React2Shell Exploited in Large-Scale Credential Harvesting Campaign 2026-04-03 at 14:30 By Ionut Arghire Using automated scanning and the Nexus Listener collection framework, the hackers compromised over 750 systems. The post React2Shell Exploited in Large-Scale Credential Harvesting Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React2Shell Exploited in Large-Scale Credential Harvesting Campaign Read More »

New DeepLoad Malware Dropped in ClickFix Attacks

ClickFix, DeepLoad, Malware, Malware & Threats /

New DeepLoad Malware Dropped in ClickFix Attacks 2026-04-01 at 18:46 By Ionut Arghire The malware steals credentials, installs a malicious browser extension, and can spread via USB drives. The post New DeepLoad Malware Dropped in ClickFix Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

New DeepLoad Malware Dropped in ClickFix Attacks Read More »

Venom Stealer Raises Stakes With Continuous Credential Harvesting

Malware & Threats /

Venom Stealer Raises Stakes With Continuous Credential Harvesting 2026-03-31 at 17:56 By Kevin Townsend Licensed malware with built-in persistence and automation enables attackers to continuously siphon credentials, session data, and cryptocurrency assets. The post Venom Stealer Raises Stakes With Continuous Credential Harvesting appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Venom Stealer Raises Stakes With Continuous Credential Harvesting Read More »

Scroll to Top