Security News

Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
2025-04-04 06:07

Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure that has come under active exploitation in the wild. The vulnerability, tracked as...

OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers
2025-04-04 06:06

A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from...

CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware
2025-04-04 04:54

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure...

Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
2025-04-03 17:39

Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. "These campaigns notably use redirection methods such as URL...

Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware
2025-04-03 12:22

The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a...

Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices
2025-04-03 07:34

Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. "More than 2,600...

Beware fake AutoCAD, SketchUp sites dropping malware
2025-04-03 06:41

Malware peddlers are saddling users with the TookPS downloader and the Lapmon and TeviRat backdoors via malicious sites that mimic official ones and ostensibly offer legitimate software for...

Open-source malware doubles, data exfiltration attacks dominate
2025-04-03 04:00

There’s been a notable shift in the types of threats targeting software developers, with a total of 17,954 open source malware packages identified in Q1 2025, according to Sonatype. Quarterly...

Counterfeit Android devices found preloaded With Triada malware
2025-04-02 13:57

A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up. [...]

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
2025-04-02 10:43

Cybersecurity researchers have shed light on an "auto-propagating" cryptocurrency mining botnet called Outlaw (aka Dota) that's known for targeting SSH servers with weak credentials. "Outlaw is a...