Malware

2 minute read

Fake PDFCandy File Converter Websites Spread Malware

CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how…

byDeeba Ahmed

April 15, 2025

3 minute read

Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsApp

Cheap Android phones with preinstalled malware use fake apps like WhatsApp to hijack crypto transactions and steal wallet recovery phrases.

byWaqas

April 14, 2025

2 minute read

Fortinet Issues Fixes After Attackers Bypass Patches to Maintain Access

Hackers exploit Fortinet flaws to plant stealth backdoors on FortiGate devices, maintaining access even after patches. Update to…

byWaqas

April 14, 2025

2 minute read

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

ReversingLabs reveals a malicious npm package targeting Atomic and Exodus wallets, silently hijacking crypto transfers via software patching.

byDeeba Ahmed

April 10, 2025

Smokeloader Users Identified and Arrested in Operation Endgame

2 minute read

Cyber Crime

Smokeloader Users Identified and Arrested in Operation Endgame

Authorities arrest 5 Smokeloader botnet customers after Operation Endgame; evidence from seized data links customers to malware, ransomware, and more.

byWaqas

April 10, 2025

3 minute read

HellCat Ransomware Hits 4 Firms using Infostealer-Stolen Jira Credentials

HellCat ransomware hits 4 companies by exploiting Jira credentials stolen through infostealer malware, continuing their global attack spree.

byWaqas

April 8, 2025

3 minute read

Neptune RAT Variant Spreads via YouTube to Steal Windows Passwords

A new Neptune RAT variant is being shared via YouTube and Telegram, targeting Windows users to steal passwords and deliver additional malware components.

byWaqas

April 7, 2025

3 minute read

Press Release

SpyCloud Research Shows that Endpoint Detection and Antivirus Solutions Miss Two-Thirds (66%) of Malware Infections

Austin, TX, USA, 7th April 2025, CyberNewsWire

byCyberNewswire

April 7, 2025

2 minute read

Hackers Exploit Stripe API for Web Skimming Card Theft on Online Stores

Cybersecurity researchers at Jscamblers have uncovered a sophisticated web-skimming campaign targeting online retailers. The campaign utilizes a legacy…

byDeeba Ahmed

April 3, 2025

2 minute read

China’s FamousSparrow APT Hits Americas with SparrowDoor Malware

China-linked APT group FamousSparrow hits targets in the Americas using upgraded SparrowDoor malware in new cyberespionage campaign, ESET reports.

byDeeba Ahmed

April 2, 2025

The Latest

Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH

Qrator Labs Reports Mitigating Year’s Largest DDoS Attack to Date

Unlocking the Power of MetaTrader – Your Ultimate Trading Tool

Malware

Fake PDFCandy File Converter Websites Spread Malware

Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsApp

Fortinet Issues Fixes After Attackers Bypass Patches to Maintain Access

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

Smokeloader Users Identified and Arrested in Operation Endgame

HellCat Ransomware Hits 4 Firms using Infostealer-Stolen Jira Credentials

Neptune RAT Variant Spreads via YouTube to Steal Windows Passwords

SpyCloud Research Shows that Endpoint Detection and Antivirus Solutions Miss Two-Thirds (66%) of Malware Infections

Hackers Exploit Stripe API for Web Skimming Card Theft on Online Stores

China’s FamousSparrow APT Hits Americas with SparrowDoor Malware

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance

Brinker Named Among “10 Most Promising Defense Tech Startups of 2025”