Malware Analysis

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

Malware Analysis

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

The DanaBot malware operation has resumed its malicious activities, deploying a new version in active campaigns just...

Rhadamanthys Infostealer Operation Disrupted as Criminals Lose Server Access

Malware Analysis

Rhadamanthys Infostealer Operation Disrupted as Criminals Lose Server Access

The Rhadamanthys infostealer operation has experienced a significant disruption, with multiple users of this Malware-as-a-Service (MaaS) platform...

XCSSET macOS Malware Evolves with Clipboard Hijacking and Enhanced Persistence

Malware Analysis

XCSSET macOS Malware Evolves with Clipboard Hijacking and Enhanced Persistence

Microsoft Threat Intelligence has identified a new variant of the XCSSET macOS malware in limited attacks, marking...

Obscura Ransomware: Analysis of a New Go-Based Threat Targeting Domain Controllers

Malware Analysis

Obscura Ransomware: Analysis of a New Go-Based Threat Targeting Domain Controllers

Security analysts from Huntress Labs identified a previously unknown ransomware variant, named Obscura, in late August 2025....

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

Malware Analysis

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

In September 2025, the Node Package Manager (NPM) ecosystem was targeted by a series of sophisticated supply...

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Malware Analysis

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Threat researchers from ESET have identified a novel ransomware strain, designated PromptLock, which represents a significant shift...

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

Malware Analysis

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

A sophisticated Android backdoor, tracked as Android.Backdoor.916.origin, is actively targeting executives of Russian businesses. The malware is...

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Malware Analysis

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Arch Linux has removed three compromised packages from its Arch User Repository (AUR) after discovering they contained...

LameHug Malware Leverages AI LLMs for Real-Time Windows Data Theft

Malware Analysis

LameHug Malware Leverages AI LLMs for Real-Time Windows Data Theft

A new malware strain named LameHug has been discovered using large language models (LLMs) to dynamically generate...

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

Malware Analysis

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

The latest iteration of the Godfather Android banking trojan has adopted a sophisticated virtualization technique to bypass...

Anubis Ransomware Now Includes File-Wiping Module, Rendering Recovery Impossible

Malware Analysis

Anubis Ransomware Now Includes File-Wiping Module, Rendering Recovery Impossible

The Anubis ransomware-as-a-service (RaaS) operation has escalated its threat by integrating a wiper module into its malware,...

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

Malware Analysis

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

The official website for RVTools, a widely used VMware management utility, was compromised in a supply chain...

Procolored Printer Drivers Distributed Malware for Six Months: Technical Analysis and Mitigation

Malware Analysis

Procolored Printer Drivers Distributed Malware for Six Months: Technical Analysis and Mitigation

For at least six months, Procolored, a manufacturer of direct-to-film (DTF) printers, distributed malware-infected drivers through its...

MintsLoader Malware Analysis: Evasion Tactics and Threat Intelligence

Malware Analysis

MintsLoader Malware Analysis: Evasion Tactics and Threat Intelligence

MintsLoader has emerged as a sophisticated malware loader distributing payloads like GhostWeaver, StealC, and a modified BOINC...

Python-Based Discord RAT: Technical Analysis and Mitigation Strategies

Malware Analysis

Python-Based Discord RAT: Technical Analysis and Mitigation Strategies

A newly identified Python-based Remote Access Trojan (RAT) leveraging Discord for command-and-control (C2) operations has raised significant...

Hannibal Stealer: A Cracked Variant Targeting Sensitive Data

Malware Analysis

Hannibal Stealer: A Cracked Variant Targeting Sensitive Data

A new malware variant, dubbed Hannibal Stealer, has emerged as a cracked and rebranded version of the...

AgeoStealer Malware Targets Gaming Communities with Social Engineering Tactics

Malware Analysis

AgeoStealer Malware Targets Gaming Communities with Social Engineering Tactics

The gaming community has become a prime target for cybercriminals, with the emergence of AgeoStealer, a sophisticated...

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

Malware Analysis

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

A newly discovered remote access trojan (RAT), dubbed ResolverRAT, has been observed targeting organizations in the healthcare...

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

Malware Analysis

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

A newly discovered cryptojacking campaign is targeting Docker environments using sophisticated evasion techniques to deploy cryptocurrency miners...

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

Malware Analysis

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

An alleged operator of the SmokeLoader malware, identified as Nicholas Moses (alias “scrublord”), is facing federal hacking...

Posts pagination

1 2 3 Next

Malware Analysis

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

Rhadamanthys Infostealer Operation Disrupted as Criminals Lose Server Access

XCSSET macOS Malware Evolves with Clipboard Hijacking and Enhanced Persistence

Obscura Ransomware: Analysis of a New Go-Based Threat Targeting Domain Controllers

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

LameHug Malware Leverages AI LLMs for Real-Time Windows Data Theft

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

Anubis Ransomware Now Includes File-Wiping Module, Rendering Recovery Impossible

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

Procolored Printer Drivers Distributed Malware for Six Months: Technical Analysis and Mitigation

MintsLoader Malware Analysis: Evasion Tactics and Threat Intelligence

Python-Based Discord RAT: Technical Analysis and Mitigation Strategies

Hannibal Stealer: A Cracked Variant Targeting Sensitive Data

AgeoStealer Malware Targets Gaming Communities with Social Engineering Tactics

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

You may have missed

OBR Enlists Cyber Expert Following Accidental Pre-Budget Data Leak

NordVPN’s 2025 Black Friday Deal: A Technical Analysis of Plan Features for Security Professionals

Supply Chain Cyberattack Disrupts IT Systems Across Multiple London Councils

ASUS Confronts Critical Authentication Bypass Flaws in Routers and PC Software