Malware

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times

infostealer, Malware, Malware & Threats, NPM /

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times 2025-10-30 at 12:59 By Ionut Arghire The packages deployed malicious code harvesting system information, credentials, tokens, API keys, and other sensitive information. The post 136 NPM Packages Delivering Infostealers Downloaded 100,000 Times appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times Read More »

Researchers expose large-scale YouTube malware distribution network

Check Point, Don't miss, Hot stuff, Malware, News, phishing, Youtube /

Researchers expose large-scale YouTube malware distribution network 2025-10-23 at 17:37 By Zeljka Zorz Check Point researchers have uncovered, mapped and helped set back a stealthy, large-scale malware distribution operation on YouTube they dubbed the “YouTube Ghost Network.” The network published more than 3,000 videos across compromised or fake channels, luring viewers with game cheats, cracked

Researchers expose large-scale YouTube malware distribution network Read More »

How Lazarus Group used fake job ads to spy on Europe’s drone and defense sector

cybercrime, cybersecurity, Don't miss, ESET, Malware, News, North Korea, Remote Access Trojan, scams, threats, trojan /

How Lazarus Group used fake job ads to spy on Europe’s drone and defense sector 2025-10-23 at 09:23 By Sinisa Markovic ESET researchers have uncovered a fresh wave of Operation DreamJob, a long-running campaign linked to North Korea’s Lazarus Group. This latest activity targeted several European defense contractors, including firms deeply involved in drone and

How Lazarus Group used fake job ads to spy on Europe’s drone and defense sector Read More »

Russian APT Switches to New Backdoor After Malware Exposed by Researchers

APT, Callisto, Malware, Nation-State, Russia, Russian APT, Star Blizzard /

Russian APT Switches to New Backdoor After Malware Exposed by Researchers 2025-10-22 at 15:03 By Ionut Arghire Star Blizzard started using the NoRobot (BaitSwitch) and MaybeRobot (SimpleFix) malware after public reporting on the LostKeys malware. The post Russian APT Switches to New Backdoor After Malware Exposed by Researchers appeared first on SecurityWeek. This article is

Russian APT Switches to New Backdoor After Malware Exposed by Researchers Read More »

Attackers don’t linger, they strike and move on

Artificial Intelligence, cyberattacks, cybersecurity, Elastic, Malware, News, report /

Attackers don’t linger, they strike and move on 2025-10-13 at 07:26 By Anamarija Pogorelec Cyber attacks are happening faster than ever. Intrusions that once took weeks or months now unfold in minutes, leaving little time to react. Attackers move quickly once they gain access, aiming to run their payloads and get results before defenders can

Attackers don’t linger, they strike and move on Read More »

Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks

Cl0p, cybercrime, Malware, Malware & Threats, Oracle E-Business Suite, Oracle hack /

Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks 2025-10-10 at 10:46 By Eduard Kovacs Google researchers believe exploitation may have started as early as July 10 and the campaign hit dozens of organizations. The post Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks Read More »

ProSpy and ToSpy: New spyware families impersonating secure messaging apps

Android, cybercrime, ESET, Malware, News, Signal, spyware /

ProSpy and ToSpy: New spyware families impersonating secure messaging apps 2025-10-02 at 12:04 By Anamarija Pogorelec ESET researchers have found two Android spyware campaigns aimed at people looking for secure messaging apps such as Signal and ToTok. The attackers spread the spyware through fake websites and social engineering. Researchers identified two previously unknown spyware families.

ProSpy and ToSpy: New spyware families impersonating secure messaging apps Read More »

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware

APT, China, China APT, espionage, Malware, Nation-State, Net-Star, Phantom Taurus /

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware 2025-10-01 at 16:33 By Ionut Arghire Focused on espionage, the threat actor shares infrastructure with Chinese APTs, but uses different TTPs in attacks. The post Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware Read More »

New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions

cryptojacking, macOS malware, Malware, Malware & Threats, XCSSET /

New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions 2025-09-26 at 14:50 By Ionut Arghire The malware now uses a four-stage infection chain, has an additional persistence mechanism, and also targets Firefox browser data. The post New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions Read More »

Ransomware groups are multiplying, raising the stakes for defenders

cybercrime, cybersecurity, Malware, News, Ransomware, report, Searchlight Cyber /

Ransomware groups are multiplying, raising the stakes for defenders 2025-09-26 at 09:08 By Sinisa Markovic Ransomware activity is climbing again, with a steep increase in the number of victims and the number of groups launching attacks. A new mid-year report from Searchlight Cyber shows how quickly the threat landscape is shifting and why CISOs need

Ransomware groups are multiplying, raising the stakes for defenders Read More »

SonicWall Updates SMA 100 Appliances to Remove Overstep Malware

Malware, Malware & Threats, Overstep, rootkit, SonicWall /

SonicWall Updates SMA 100 Appliances to Remove Overstep Malware 2025-09-24 at 12:17 By Ionut Arghire The software update includes additional file checks and helps users remove the known rootkit deployed in a recent campaign. The post SonicWall Updates SMA 100 Appliances to Remove Overstep Malware appeared first on SecurityWeek. This article is an excerpt from

SonicWall Updates SMA 100 Appliances to Remove Overstep Malware Read More »

Malicious GitHub pages lure MacOS users into installing Atomic infostealer

Don't miss, GitHub, Hot stuff, LastPass, macOS, Malware, News, SEO, social engineering /

Malicious GitHub pages lure MacOS users into installing Atomic infostealer 2025-09-22 at 17:52 By Zeljka Zorz MacOS users looking to download popular software such as LastPass, 1Password, After Effects, Gemini, and many others are in danger of getting saddled with the Atomic infostealer instead, LastPass has warned. The malware delivery campaign is ongoing and widespread

Malicious GitHub pages lure MacOS users into installing Atomic infostealer Read More »

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions

Gamaredon, Malware, Malware & Threats, Russia, Turla, Ukraine /

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions 2025-09-19 at 16:36 By Ionut Arghire Turla malware was deployed in February on select systems that Gamaredon had compromised in January. The post Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions Read More »

CISA Analyzes Malware From Ivanti EPMM Intrusions

CISA, exploited, Ivanti, Malware, Malware & Threats /

CISA Analyzes Malware From Ivanti EPMM Intrusions 2025-09-19 at 14:30 By Ionut Arghire Hackers chained two Ivanti EPMM vulnerabilities to collect system information, dump credentials, and execute malware. The post CISA Analyzes Malware From Ivanti EPMM Intrusions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CISA Analyzes Malware From Ivanti EPMM Intrusions Read More »

The unseen side of malware and how to find it

cybersecurity, Don't miss, Malware, malware detection, News, report, Stairwell, threat detection, threats /

The unseen side of malware and how to find it 2025-09-19 at 08:31 By Anamarija Pogorelec Security teams rely on threat reports to understand what’s out there and to keep their organizations safe. But a new report shows that these reports might only reveal part of the story. Hidden malware variants are quietly slipping past

The unseen side of malware and how to find it Read More »

Old file types, new tricks: Attackers turn everyday files into weapons

cybersecurity, HP, Malware, News, phishing, report, threats /

Old file types, new tricks: Attackers turn everyday files into weapons 2025-09-17 at 07:44 By Anamarija Pogorelec Attackers are finding new ways to blend in with everyday business tools, hiding their activity inside formats and processes that workers and IT teams often trust. The latest quarterly Threat Insights Report from HP Wolf Security shows how

Old file types, new tricks: Attackers turn everyday files into weapons Read More »

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers

Arctic Wolf Networks, data theft, Don't miss, enterprise, Hot stuff, malvertising, Malware, malware analysis, News, SMBs /

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers 2025-09-09 at 09:46 By Zeljka Zorz Researchers have spotted a malvertising (and clever malware delivery) campaign targeting IT workers in the European Union with fake GitHub Desktop installers. “We believe the goal of this campaign was to gain initial access to organizations for

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers Read More »

New framework aims to outsmart malware evasion tricks

Aryaka, cybersecurity, Don't miss, Features, framework, Hot stuff, machine learning, Malware, News, research /

New framework aims to outsmart malware evasion tricks 2025-08-29 at 10:03 By Mirko Zorz Attackers have learned how to trick machine learning malware detectors with small but clever code changes, and researchers say they may finally have an answer. In a new paper, academics from Inria and the CISPA Helmholtz Center for Information Security describe

New framework aims to outsmart malware evasion tricks Read More »

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime

infostealer, Malware, Malware & Threats, Uncategorized /

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime 2025-08-27 at 15:46 By Kevin Townsend Competition among malware-as-a-service developers has transformed infostealers into refined, accessible tools for cybercriminals worldwide. The post Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime Read More »

PromptLock: First AI-Powered Ransomware Emerges

AI, Artificial Intelligence, Featured, Malware, Malware & Threats /

PromptLock: First AI-Powered Ransomware Emerges 2025-08-27 at 14:51 By Ionut Arghire Proof-of-concept ransomware uses AI models to generate attack scripts in real time. The post PromptLock: First AI-Powered Ransomware Emerges appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

PromptLock: First AI-Powered Ransomware Emerges Read More »

Scroll to Top