Malware

The Latest

New Pink Extortion Group Targets Microsoft 365 Cloud Data Via Vishing Scams

New Pink Extortion Group Targets Microsoft 365 Cloud Data Via Vishing Scams

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

Over 63,000 Gamer Accounts Exposed in Atlas Menu Cyberattack

Atlas Menu Data Breach Exposes 64,000 GTA V and CS2 Cheat Service Users

Reaper macOS Infostealer Abuses Script Editor to Steal Crypto and Passwords

Reaper macOS Infostealer Abuses Script Editor to Steal Crypto and Passwords

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

Read More

2 minute read

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

32 Red Hat npm packages compromised by Miasma malware expose cloud tokens, CI/CD secrets and developer credentials in supply chain attack.

June 5, 2026

Lazarus Group Uses npm Brandjacking Campaign to Target Developers

Read More

3 minute read

Lazarus Group Uses npm Brandjacking Campaign to Target Developers

North Korean Lazarus Group targets npm developers with brandjacking packages that mimic trusted tools, drop malware and put credentials at risk.

June 4, 2026

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Read More

3 minute read

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads.

June 2, 2026

Read More

4 minute read

New WordPress Malware Uses Steam Profile Comments to Hide C2 Instructions

GoDaddy researchers found WordPress malware using Steam Community profile comments to hide encoded command and control data, with nearly 1,980 sites affected.

June 2, 2026

Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Read More

4 minute read

Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Hackers are using fake purchase order emails and process hollowing to deploy fileless PureLogs malware to steal Windows users' browser, crypto, and Discord data.

June 1, 2026

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Read More

2 minute read

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign.

May 27, 2026

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Read More

3 minute read

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Cybercriminals are using SEO poisoning and fake Gemini and Claude installer sites to infect developers with fileless malware and steal data.

May 26, 2026

FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Read More

2 minute read

FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Hackers compromised FBI Chief Kash Patel’s clothing store in a ClickFix attack that tricked macOS users into installing infostealer malware.

May 25, 2026

Netherlands Busts Bulletproof Hosting Network Linked to Disinformation and Cybercrime

Read More

2 minute read

Cyber Crime

Netherlands Busts Bulletproof Hosting Network Linked to Disinformation and Cybercrime

Dutch authorities arrested two suspects after dismantling a bulletproof hosting network linked to cybercrime, disinfo, and Russian sanctions evasion.

May 25, 2026

RondoDox Botnet Exploits Critical 2018 Vulnerability to Hijack ASUS Routers

Read More

2 minute read

RondoDox Botnet Exploits Critical 2018 Vulnerability to Hijack ASUS Routers

Cybersecurity firm VulnCheck reveals hackers are using a critical 2018 vulnerability to bypass authentication and hack over a million ASUS routers.

May 23, 2026