Malware

2 minute read

Backdoor Found in Official XRP Ledger NPM Package

XRP Ledger SDK hit by supply chain attack: Malicious NPM versions stole private keys; users urged to update…

byDeeba Ahmed

April 24, 2025

2 minute read

Fake Alpine Quest Mapping App Spotted Spying on Russian Military

Fake Alpine Quest app laced with spyware was used to target Russian military Android devices, stealing location data,…

byWaqas

April 22, 2025

Chinese APT IronHusky Deploys New MysterySnail RAT on Russia

2 minute read

Chinese APT IronHusky Deploys Updated MysterySnail RAT on Russia

Kaspersky researchers report the reappearance of MysterySnail RAT, a malware linked to Chinese IronHusky APT, targeting Mongolia and…

byDeeba Ahmed

April 19, 2025

2 minute read

Cozy Bear’s Wine Lure Drops WineLoader Malware on EU Diplomats

Midnight Blizzard (APT29/Cozy Bear) targets European embassies and Ministries of Foreign Affairs with sophisticated phishing emails disguised as…

byDeeba Ahmed

April 19, 2025

Fake PDFCandy Websites Spread Malware via Google Ads

2 minute read

Fake PDFCandy File Converter Websites Spread Malware

CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how…

byDeeba Ahmed

April 15, 2025

4 minute read

Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsApp

Cheap Android phones with preinstalled malware use fake apps like WhatsApp to hijack crypto transactions and steal wallet recovery phrases.

byWaqas

April 14, 2025

2 minute read

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

ReversingLabs reveals a malicious npm package targeting Atomic and Exodus wallets, silently hijacking crypto transfers via software patching.

byDeeba Ahmed

April 10, 2025

3 minute read

Grandoreiro Strikes Again: Geofenced Phishing Attacks Target LATAM

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.

byOwais Sultan

April 9, 2025

3 minute read

HellCat Ransomware Hits 4 Firms using Infostealer-Stolen Jira Credentials

HellCat ransomware hits 4 companies by exploiting Jira credentials stolen through infostealer malware, continuing their global attack spree.

byWaqas

April 8, 2025

3 minute read

Neptune RAT Variant Spreads via YouTube to Steal Windows Passwords

A new Neptune RAT variant is being shared via YouTube and Telegram, targeting Windows users to steal passwords and deliver additional malware components.

byWaqas

April 7, 2025

The Latest

Planet Technology Industrial Switch Flaws Risk Full Takeover – Patch Now

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

Critical Commvault Flaw Allows Full System Takeover – Update NOW

Why Developers Should Care About Generative AI (Even They Aren’t AI Expert)

Backdoor Found in Official XRP Ledger NPM Package

Fake Alpine Quest Mapping App Spotted Spying on Russian Military

Chinese APT IronHusky Deploys Updated MysterySnail RAT on Russia

Cozy Bear’s Wine Lure Drops WineLoader Malware on EU Diplomats

Fake PDFCandy File Converter Websites Spread Malware

Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsApp

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

Grandoreiro Strikes Again: Geofenced Phishing Attacks Target LATAM

HellCat Ransomware Hits 4 Firms using Infostealer-Stolen Jira Credentials

Neptune RAT Variant Spreads via YouTube to Steal Windows Passwords

dRPC Launches NodeHaus to Streamline Blockchain and Web3 Infrastructure

Lattica Emerges from Stealth to Solve AI’s Biggest Privacy Challenge with FHE

Criminal IP to Showcase Advanced Threat Intelligence at RSAC™ 2025

Industry First: StrikeReady AI Platform Moves Security Teams Beyond Basic, One-Dimensional AI-Driven Triage Solutions

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions