Security Affairs

JANUARY 14, 2025

The FBI has removed Chinese PlugX malware from over 4,200 computers in networks across the United States, the U.S. The Justice Department and FBI, along with international partners, announced they deleted PlugX malware from thousands of infected computers worldwide as part of a multi-month law enforcement operation.

Malware 120

Malware Government Hacking Cybersecurity 120

Penetration Testing

MAY 14, 2025

Malware authors have begun exploiting Google Calendar invites and Unicode Private Use Area (PUA) characters to deliver obfuscated The post Obfuscated Malware Delivered via Google Calendar Invites and Unicode PUAs appeared first on Daily CyberSecurity.

Malware 104

Malware Cybersecurity 104

The Last Watchdog

JANUARY 7, 2025

Ramat Gan, Israel, January 7th, 2025, CyberNewswire — CyTwist , a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware. Evasion: AI-generated threats mimic human behavior, complicating detection for security teams.

Threat Detection 130

Threat Detection Engineering Malware Artificial Intelligence 130

eSecurity Planet

MAY 11, 2025

Technical support consultant using programming to upgrade artificial intelligence simulation model As AI tools boom in popularity, cyberthieves are exploiting the excitement with fake AI video editing platforms that lure users into downloading malware. The Noodlophile Stealer is a new malware strain. Credit: Morphisec Whos behind it?

Malware 106

Malware Scams Media Artificial Intelligence 106

The Hacker News

MAY 25, 2025

Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools like LetsVPN and QQ Browser to deliver the Winos 4.0 The campaign, first detected by Rapid7 in February 2025, involves the use of a multi-stage, memory-resident loader called Catena.

Malware 116

Malware VPN Software Cybersecurity 116

Penetration Testing

MAY 13, 2025

The Seqrite Labs APT-Team has uncovered a complex cyber-espionage operation dubbed Swan Vector, targeting educational institutions and the The post Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware appeared first on Daily CyberSecurity.

Malware 110

Malware Education Cybersecurity 110

Malwarebytes

MARCH 17, 2025

Instead of converting files, the tools actually load malware onto victims computers. The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). This is the actual malware. Imageconvertors[.]com

Malware 135

Malware Adware Education Phishing 135

Penetration Testing

MAY 23, 2025

Trend Micro reveals a growing threat on TikTok, where AI-generated videos deceive users into running malicious PowerShell commands The post AI-Generated Malware: TikTok Videos Push Infostealers with PowerShell Commands appeared first on Daily CyberSecurity.

Malware 107

Malware Cybersecurity Social Engineering Artificial Intelligence 107

Penetration Testing

MAY 14, 2025

First spotted in 2022 and actively developed ever since, DarkCloud Stealer has reemerged with a sophisticated new variant The post DarkCloud Stealer Returns: AutoIt-Powered Malware Strikes with New Stealth Tactics appeared first on Daily CyberSecurity.

Malware 112

Malware Cybersecurity Phishing 112

Tech Republic Security

MAY 13, 2025

By downloading what they believe is an AI-generated video, victims have installed malware that can steal their data or offer attackers remote access to infected devices.

Malware 133

Malware Artificial Intelligence Social Engineering Engineering 133

Security Affairs

JANUARY 20, 2025

Researchers linked the threat actor DoNot Teamto a new Android malware that was employed in highly targeted cyber attacks. CYFIRMA researchers linked a recently discovered Android malware to the Indian APT group known as DoNot Team. The group persistently employs similar techniques in their Android malware.”

Malware 114

Malware Cyber Attacks Mobile Phishing 114

Penetration Testing

APRIL 12, 2025

AhnLab Security intelligence Center (ASEC) has revealed a cyberattack campaign where Arabic-speaking attackers are distributing ViperSoftX malware, targeting The post ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign appeared first on Daily CyberSecurity.

Malware 117

Malware Security Intelligence Cybersecurity Software 117

Penetration Testing

MAY 12, 2025

CYFIRMA researchers have revealed a new.NET-based information stealer called PupkinStealer, a lightweight but highly targeted malware that The post PupkinStealer: Tiny Malware, Big Theft via Telegram Bot Exposed appeared first on Daily CyberSecurity.

Malware 95

Malware Cybersecurity 95

SecureWorld News

JANUARY 7, 2025

Cybersecurity in today's world is akin to the enchanted realms of fairy tales, where threats lurk in dark digital forests and heroes wield keyboards instead of swords. Welcome to SecureWorld's theme for 2025: Once Upon a Time in Cybersecurity. Welcome to SecureWorld's theme for 2025: Once Upon a Time in Cybersecurity.

Cybersecurity 113

Cybersecurity Social Engineering Phishing Engineering 113

Penetration Testing

MAY 7, 2025

Lampion, the banking malware first observed in 2019, has reemerged with new tricks. In a detailed analysis, Unit The post Lampion Malware Returns with ClickFix Tactics to Target Portuguese Sectors appeared first on Daily CyberSecurity.

Malware 97

Malware Banking Cybersecurity 97

Penetration Testing

MAY 14, 2025

The ReversingLabs research team has uncovered yet another software supply chain attack targeting the cryptocurrency ecosystem, this time The post PyPI Malware Alert: Malicious ‘solana-token’ Package Targets Solana Developers appeared first on Daily CyberSecurity.

Malware 95

Malware Cryptocurrency Software Cybersecurity 95

Jane Frankland

MAY 18, 2025

Cybersecurity has entered a new era. In this blog, Ill be examining how AI is reshaping the fight on both sides, shedding light on the unprecedented collaboration among hackers, and why the old cybersecurity playbook is no match for todays challenges. The harsh truth is that no prevention strategy can ever be 100% effective.

Cybersecurity 130

Cybersecurity Ransomware Backups Firewall 130

SecureWorld News

MAY 9, 2025

Google's Threat Intelligence Group (GTIG) has identified a new malware strain, dubbed "LOSTKEYS," attributed to the Russian state-sponsored hacking group COLDRIVER. The introduction of LOSTKEYS signifies a strategic shift towards deploying malware for direct data exfiltration.

Malware 86

Malware Social Engineering Engineering Government 86

The Last Watchdog

NOVEMBER 11, 2024

However, before we get too carried away, it is crucial to explore the symbiotic relationship between AR and cybersecurity. This is primarily because AR is still relatively new and a rapidly evolving technology, which ultimately means that it is bound to bring about unprecedented opportunities, challenges, and even risks to cybersecurity.

Cybersecurity 130

Cybersecurity Social Engineering Technology Threat Detection 130

Penetration Testing

MAY 22, 2025

The Wordfence Threat Intelligence Team has uncovered a new and deeply stealthy formjacking malware targeting WooCommerce, the widely-used The post Stealthy Skimmer: New Formjacking Malware Targets WooCommerce Checkouts appeared first on Daily CyberSecurity.

Malware 80

Malware Cybersecurity 80

Penetration Testing

MAY 23, 2025

A new wave of deceptive attacks is weaponizing the trusted Cloudflare brand to deliver Windows-based malware through compromised The post Warning: New Malvertising Campaign Uses Fake Cloudflare Pages to Deliver Malware appeared first on Daily CyberSecurity.

Malware 89

Malware Cybersecurity 89

Penetration Testing

MAY 9, 2025

A new cyberattack is targeting macOS users, with the Atomic Stealer malware being distributed under the guise of The post Atomic Stealer Malware Targets macOS Users with Fake Evernote Crack appeared first on Daily CyberSecurity.

Malware 80

Malware Cybersecurity 80

Malwarebytes

MAY 28, 2025

Cybercriminals are taking advantage of the publics interest in Artificial Intelligence (AI) and delivering malware via text-to-video tools. After the first run, the malware displays an error window to trick victims into executing it again. For a full technical analysis of the malware, feel free to read the researchers’ report.

Malware 105

Malware Scams Artificial Intelligence Media 105

Malwarebytes

JANUARY 16, 2025

The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of the Peoples Republic of China (PRC) used a version of PlugX malware to control, and steal information from victims’ computers.

Malware 110

Malware DNS Internet Internet 110

SecureWorld News

OCTOBER 23, 2024

Securities and Exchange Commission (SEC) announced Tuesday that it has fined four companies $7 million for misleading statements about their cybersecurity incidents, particularly concerning the high-profile 2019 SolarWinds hack. The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions."

Cybersecurity 113

Cybersecurity Risk Hacking Software 113

Penetration Testing

MAY 12, 2025

Palo Alto Networks Unit 42 has uncovered a sophisticated obfuscation technique leveraging steganography to hide malware within bitmap The post Stealth in Pixels: NET Malware Hides Payloads in Bitmap Resources appeared first on Daily CyberSecurity.

Malware 82

Malware Cybersecurity 82

Penetration Testing

MAY 25, 2025

Elastic Security Labs has identified a new malware family dubbed “DOUBLELOADER” that leverages ALCATRAZa game-hacking inspired obfuscatorto deploy The post DOUBLELOADER Malware Uses ALCATRAZ Obfuscator to Evade Detection appeared first on Daily CyberSecurity.

Malware 77

Malware Hacking Cybersecurity 77

Security Affairs

APRIL 25, 2025

Researchers identified a new malware, named DslogdRAT, deployed after exploiting a now-patched flaw in Ivanti Connect Secure (ICS). JPCERT/CC researchers reported that a new malware, dubbed DslogdRAT, and a web shell were deployed by exploiting a zero-day vulnerability during attacks on Japanese organizations in December 2024.

Malware 90

Malware Hacking Authentication Cybersecurity 90

Penetration Testing

MAY 18, 2025

Aidan Leon, cybersecurity practitioner and threat analyst at ZeroDay Labs, has disclosed a sophisticated supply chain attack involving The post RVTools Supply Chain Attack: Bumblebee Malware Delivered via Trusted VMware Utility appeared first on Daily CyberSecurity.

Malware 80

Malware Cybersecurity 80

The Last Watchdog

DECEMBER 18, 2024

Wojtasiak Mark Wojtasiak , VP of Research and Strategy, Vectra AI In the coming year, well see the initial excitement that surrounded AIs potential in cybersecurity start to give way due to a growing sense of disillusionment among security leaders. The SEC Cybersecurity Disclosure Rule highlights transparency in governance.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Malwarebytes

APRIL 24, 2025

ELUSIVE COMET targets its victims by luring them into a Zoom video call and then taking over their PC to install malware, infiltrate their accounts, and steal their assets. Zoom takeovers in action ELUSIVE COMET tried this trick on the CEO of cybersecurity consulting company Trail of Bits, but it didn’t work on him.

Malware 134

Malware Media Accountability Cryptocurrency 134

The Last Watchdog

APRIL 7, 2025

Despite advanced AI detection and telemetry analysis offered in todays EDR solutions, modern infostealer malware is designed to evade even the most sophisticated defenses, using tactics like polymorphic malware, memory-only execution, and exploitation of zero-day vulnerabilities or outdated software.

Antivirus 113

Antivirus Malware Cybercrime Identity Theft 113

Tech Republic Security

MAY 23, 2025

Signs of infostealer malware were found, but no confirmed breach or misuse of user data, says cybersecurity researcher. The databases exposure duration is unknown.

Malware 155

Malware Cybersecurity Big data 155

Penetration Testing

MAY 19, 2025

In a detailed threat analysis, AhnLab SEcurity intelligence Center (ASEC) has uncovered a deceptive malware campaign involving DBatLoaderalso The post DBatLoader Analysis: Evasive Malware Uses DLL Side-Loading and Anti-Detection Tactics appeared first on Daily CyberSecurity.

Malware 82

Malware Security Intelligence Cybersecurity 82

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Below is an exhaustive list of key cybersecurity trends to watch out for in 2025. Lets explore the top current cybersecurity trends this year. The challenge?

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

Penetration Testing

MAY 15, 2025

Zscaler ThreatLabz has uncovered a new and dangerous malware loader dubbed TransferLoader, actively used in the wild since The post TransferLoader Malware Unmasked: IPFS-Enabled Loader Deploys Ransomware and Backdoors with Obfuscation Precision appeared first on Daily CyberSecurity.

Malware 80

Malware Ransomware Cybersecurity 80

Penetration Testing

MAY 18, 2025

Recently, WithSecures Threat Intelligence team uncovered a sophisticated malware campaign where the open-source password manager KeePass was trojanised The post Trojanized KeePass Used to Deploy Cobalt Strike and Steal Credentials appeared first on Daily CyberSecurity.

Password Management 138

Password Management Passwords Malware Cybersecurity 138