Security News

Police detains Smokeloader malware customers, seizes servers
2025-04-09 13:33

In follow-up activity for Operation Endgame, law enforcement tracked down Smokeloader botnet's customers and detained at least five individuals. [...]

WhatsApp vulnerability could be used to infect Windows users with malware (CVE-2025-30401)
2025-04-09 12:51

WhatsApp users are urged to update the Windows client app to plug a serious security vulnerability (CVE-2025-30401) that may allow attackers to trick users into running malicious code. Meta...

New TCESB Malware Found in Active Attacks Exploiting ESET Security Scanner
2025-04-09 11:38

A Chinese-affiliated threat actor known for its cyber-attacks in Asia has been observed exploiting a security flaw in security software from ESET to deliver a previously undocumented malware...

Fake Microsoft Office add-in tools push malware via SourceForge
2025-04-08 20:53

Threat actors are abusing SourceForge to distribute fake Microsoft add-ins that install malware on victims' computers to both mine and steal cryptocurrency. [...]

Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings
2025-04-08 16:07

Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software hosting service, under the guise of cracked...

CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks
2025-04-07 13:40

Cybersecurity agencies from Australia, Canada, New Zealand, and the United States have published a joint advisory about the risks associated with a technique called fast flux that has been adopted...

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
2025-04-05 14:23

The North Korean threat actors behind the ongoing Contagious Interview campaign are spreading their tentacles on the npm ecosystem by publishing more malicious packages that deliver the BeaverTail...

Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
2025-04-04 06:07

Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure that has come under active exploitation in the wild. The vulnerability, tracked as...

OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers
2025-04-04 06:06

A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from...

CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware
2025-04-04 04:54

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure...