Security News

Malicious PyPi package hides RAT malware, targets Discord devs since 2022
2025-05-08 18:51

A malicious Python package targeting Discord developers with remote access trojan (RAT) malware was spotted on the Python Package Index (PyPI) after more than three years. [...]

Google links new LostKeys data theft malware to Russian cyberspies
2025-05-08 13:39

Since the start of the year, the Russian state-backed ColdRiver hacking group has been using new LostKeys malware to steal files in espionage attacks targeting Western governments, journalists,...

MirrorFace Targets Japan and Taiwan with ROAMINGMOUSE and Upgraded ANEL Malware
2025-05-08 10:32

The nation-state threat actor known as MirrorFace has been observed deploying malware dubbed ROAMINGMOUSE as part of a cyber espionage campaign directed against government agencies and public...

Russian Hackers Using ClickFix Fake CAPTCHA to Deploy New LOSTKEYS Malware
2025-05-08 06:57

The Russia-linked threat actor known as COLDRIVER has been observed distributing a new malware called LOSTKEYS as part of an espionage-focused campaign using ClickFix-like social engineering...

Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times
2025-05-07 07:37

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that masquerades as a seemingly harmless Discord-related utility but incorporates a...

Linux wiper malware hidden in malicious Go modules on GitHub
2025-05-06 09:13

A supply-chain attack targets Linux servers with disk-wiping malware hidden in Golang modules published on GitHub. [...]

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors
2025-05-05 11:29

What if attackers aren't breaking in—they're already inside, watching, and adapting? This week showed a sharp rise in stealth tactics built for long-term access and silent control. AI is being...

StealC malware enhanced with stealth upgrades and data theft tools
2025-05-04 14:11

The creators of StealC, a widely-used information stealer and malware downloader, have released its second major version, bringing multiple stealth and data theft enhancements. [...]

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack
2025-05-03 14:31

Cybersecurity researchers have discovered three malicious Go modules that include obfuscated code to fetch next-stage payloads that can irrevocably overwrite a Linux system's primary disk and...

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware
2025-05-03 09:33

An Iranian state-sponsored threat group has been attributed to a long-term cyber intrusion aimed at a critical national infrastructure (CNI) in the Middle East that lasted nearly two years. The...