Malware & Threats

In Other News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps

In Other News, Malware & Threats /

In Other News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps 2025-01-31 at 19:18 By SecurityWeek News Noteworthy stories that might have slipped under the radar: stealing browser data via Syncjacking, hackers falsely claim AWS breach, Google prevented 2 million bad apps from reaching Google Play.  The post In Other News: Browser Syncjacking, […]

React to this headline:

Loading spinner

In Other News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps Read More »

VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products

Aria Operations, CVE-2025-22218, CVE-2025-22222, Malware & Threats, VMWare, Vulnerabilities /

VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products 2025-01-30 at 21:23 By Ryan Naraine VMWare calls attention to patches for multiple ‘high-risk’ security defects in its Aria Operations and Aria Operations for Logs products. The post VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products Read More »

New Zyxel Zero-Day Under Attack, No Patch Available

Censys, CVE-2024-40891, GreyNoise, Malware & Threats, Vulnerabilities, Zyxel /

New Zyxel Zero-Day Under Attack, No Patch Available 2025-01-29 at 18:21 By Ryan Naraine GreyNoise reports active exploitation of a newly discovered zero-day vulnerability in Zyxel CPE devices. There are no patches available. The post New Zyxel Zero-Day Under Attack, No Patch Available appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

New Zyxel Zero-Day Under Attack, No Patch Available Read More »

Aquabot Botnet Targeting Vulnerable Mitel Phones

Aquabot, botnet, exploited, Malware & Threats, Mirai, Mitel /

Aquabot Botnet Targeting Vulnerable Mitel Phones 2025-01-29 at 14:18 By Ionut Arghire The Mirai-based Aquabot botnet has been targeting a vulnerability in Mitel SIP phones for which a proof-of-concept (PoC) exploit exists. The post Aquabot Botnet Targeting Vulnerable Mitel Phones appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Aquabot Botnet Targeting Vulnerable Mitel Phones Read More »

VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer

Avi Load Balancer, Malware & Threats, SQL injection, VMWare, Vulnerabilities /

VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer 2025-01-28 at 23:03 By Ryan Naraine VMware warns that a malicious user with network access may be able to use specially crafted SQL queries to gain database access. The post VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer appeared

React to this headline:

Loading spinner

VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer Read More »

Eclypsium Eyes Global Expansion with $45 Million Series C Investment

CISA, Eclypsium, firmware, Funding/M&A, Malware & Threats, Qualcomm Ventures, Series B /

Eclypsium Eyes Global Expansion with $45 Million Series C Investment 2025-01-28 at 18:03 By SecurityWeek News The investment includes equity and debt from new investors Qualcomm Ventures, Pavilion Capital, Singtel Innov8, and Sixty Degree Capital.  The post Eclypsium Eyes Global Expansion with $45 Million Series C Investment appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Eclypsium Eyes Global Expansion with $45 Million Series C Investment Read More »

In Other News: VPN Supply Chain Attack, PayPal $2M Settlement, RAT Builder Hacks Script Kiddies

In Other News, Malware & Threats /

In Other News: VPN Supply Chain Attack, PayPal $2M Settlement, RAT Builder Hacks Script Kiddies 2025-01-24 at 18:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Korean VPN supply chain attack, PayPal settles with New York for $2 million, trojanized RAT builder targets script kiddies.   The post In Other News: VPN

React to this headline:

Loading spinner

In Other News: VPN Supply Chain Attack, PayPal $2M Settlement, RAT Builder Hacks Script Kiddies Read More »

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI

Malware & Threats, PyPI, Python /

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI 2024-10-02 at 15:46 By Ionut Arghire Multiple Python packages referencing dependencies containing cryptocurrency-stealing code were published to PyPI. The post Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI Read More »

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors

Malware, Malware & Threats /

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors 2024-09-26 at 15:01 By Ionut Arghire A malicious campaign is targeting transportation and logistics organizations in North America with various malware families. The post US Transportation and Logistics Firms Targeted With Infostealers, Backdoors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors Read More »

AI-Generated Malware Found in the Wild

AI, Artificial Intelligence, Featured, Malware, Malware & Threats /

AI-Generated Malware Found in the Wild 2024-09-24 at 20:16 By Kevin Townsend HP has intercepted an email campaign comprising a standard malware payload delivered by an AI-generated dropper. The post AI-Generated Malware Found in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

AI-Generated Malware Found in the Wild Read More »

Necro Trojan Infects Google Play Apps With Millions of Downloads

Android, Android trojan, Google Play, Malware & Threats, Necro, Wuta Camera /

Necro Trojan Infects Google Play Apps With Millions of Downloads 2024-09-23 at 19:16 By Ionut Arghire The Necro trojan was found in two Android applications in Google Play with a combined downloads count of over 11 million. The post Necro Trojan Infects Google Play Apps With Millions of Downloads appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Necro Trojan Infects Google Play Apps With Millions of Downloads Read More »

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China

Malware & Threats, Noise Storm, Threat Intelligence /

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China 2024-09-20 at 15:46 By Ionut Arghire GreyNoise has observed millions of spoofed IPs flooding internet providers with web traffic primarily focusing on TCP connections. The post Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China Read More »

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted

In Other News, Malware & Threats /

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted 2024-09-20 at 15:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Disney will stop using Slack following a hack, Binance warns of malware, and US-Taiwan defense conference targeted by hackers. The post In Other News: Disney Ditches Slack, Binance

React to this headline:

Loading spinner

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted Read More »

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

Black Lotus Labs, botnet, Flax Typhoon, Malware & Threats, Nation-State, Nosedive, Raptor Train, Sparrow /

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military 2024-09-18 at 20:16 By Ryan Naraine Black Lotus Labs estimates that more than 200,000 routers, network-attached storage servers, and IP cameras have been ensnared in the botnet. The post Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

React to this headline:

Loading spinner

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military Read More »

New ‘Hadooken’ Linux Malware Targets WebLogic Servers

Linux malware, Malware, Malware & Threats, WebLogic /

New ‘Hadooken’ Linux Malware Targets WebLogic Servers 2024-09-13 at 15:01 By Ionut Arghire The recently observed Hadooken malware targeting Oracle WebLogic applications is linked to multiple ransomware families. The post New ‘Hadooken’ Linux Malware Targets WebLogic Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

New ‘Hadooken’ Linux Malware Targets WebLogic Servers Read More »

Iranian Hackers Targeting Iraqi Government: Security Firm

cyberespionage, Featured, Iran, Iraq, Malware, Malware & Threats /

Iranian Hackers Targeting Iraqi Government: Security Firm 2024-09-12 at 13:46 By Eduard Kovacs Hackers believed to be operating on behalf of the Iranian government have deployed malware to Iraqi government networks.  The post Iranian Hackers Targeting Iraqi Government: Security Firm appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Iranian Hackers Targeting Iraqi Government: Security Firm Read More »

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens

air gap, Malware & Threats /

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens 2024-09-11 at 16:16 By Eduard Kovacs Noise generated by the pixels on a screen can be leveraged to exfiltrate data from air-gapped computers in what is called a PIXHELL attack. The post PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens appeared first on SecurityWeek. This

React to this headline:

Loading spinner

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens Read More »

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks

exploited, Malware & Threats, SonicWall /

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks 2024-09-09 at 14:31 By Eduard Kovacs A recently patched SonicWall vulnerability tracked as CVE-2024-40766 may have been exploited in ransomware attacks. The post Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks Read More »

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa

APT29, Google Chrome, Malware & Threats, Midnight Blizzard, Nation-State, Nobelium, Russia /

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa 2024-08-29 at 16:46 By Ryan Naraine Google TAG publishes evidence showing identical or striking similarities between exploits used by Russia’s APT29 and commercial spyware vendors. The post Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa appeared first on SecurityWeek.

React to this headline:

Loading spinner

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa Read More »

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

Iran, Malware, Malware & Threats, Microsoft, Tickler /

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE 2024-08-29 at 13:01 By Eduard Kovacs The Iran-linked state-sponsored hacker group tracked as Peach Sandstorm has started using a new backdoor in attacks aimed at the US and UAE. The post Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

React to this headline:

Loading spinner

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE Read More »

Scroll to Top