Security News

Counterfeit Android devices found preloaded With Triada malware
2025-04-02 13:57

A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up. [...]

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
2025-04-02 10:43

Cybersecurity researchers have shed light on an "auto-propagating" cryptocurrency mining botnet called Outlaw (aka Dota) that's known for targeting SSH servers with weak credentials. "Outlaw is a...

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
2025-04-02 05:55

Cybersecurity researchers have discovered an updated version of a malware loader called Hijack Loader that implements new features to evade detection and establish persistence on compromised...

Only 1% of malicious emails that reach inboxes deliver malware
2025-04-02 04:00

99% of email threats reaching corporate user inboxes in 2024 were response-based social engineering attacks or contained phishing links, according to Fortra. Only 1% of malicious emails that...

We Smell a (DC)Rat: Revealing a Sophisticated Malware Delivery Chain
2025-04-01 17:30

A RAR file, a fake summons, and a Nietzsche quote—all part of a multi-stage malware chain delivering DCRat & Rhadamanthys. Acronis TRU breaks down how attackers use VBS, batch, and PowerShell...

CISA spots spawn of Spawn malware targeting Ivanti flaw
2025-04-01 01:09

Resurge an apt name for malware targeting hardware maker that has security bug after security bug Owners of Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products have a new strain of...

CISA reveals new malware variant used on compromised Ivanti Connect Secure devices
2025-03-31 13:02

CISA has released indicators of compromise, detection signatures, and updated mitigation advice for rooting out a newly identified malware variant used by the attackers who breached Ivanti Connect...

New Crocodilus malware steals Android users’ crypto wallet keys
2025-03-30 14:17

A newly discovered Android malware dubbed Crocodilus tricks users into providing the seed phrase for the cryptocurrency wallet using a warning to back up the key to avoid losing access. [...]

RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features
2025-03-30 05:07

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has shed light on a new malware called RESURGE that has been deployed as part of exploitation activity targeting a now-patched...

Malware in Lisp? Now you're just being cruel
2025-03-29 10:50

Miscreants warming to Delphi, Haskell, and the like to evade detection Malware authors looking to evade analysis are turning to less popular programming languages like Delphi or Haskell.…