Security News > 2025 > May > RVTools hit in supply chain attack to deliver Bumblebee malware

RVTools hit in supply chain attack to deliver Bumblebee malware

2025-05-20 14:39

The official website for the RVTools VMware management tool was taken offline in what appears to be a supply chain attack that distributed a trojanized installer to drop the Bumblebee malware loader on users' machines. [...]

News URL

https://www.bleepingcomputer.com/news/security/rvtools-hit-in-supply-chain-attack-to-deliver-bumblebee-malware/

#attack #malware #supplychain

Related news

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack (source)
Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
Open-source malware doubles, data exfiltration attacks dominate (source)
Recent GitHub supply chain attack traced to leaked SpotBugs token (source)
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack (source)
That massive GitHub supply chain attack? It all started with a stolen SpotBugs token (source)
New TCESB Malware Found in Active Attacks Exploiting ESET Security Scanner (source)
Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader (source)
New Android malware steals your credit cards for NFC relay attacks (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.