Qilin continues to dominate the ransomware landscape, outpacing all rival groups in the sheer number of documented incidents. According to a recent report from Cyble, the gang struck 104 organizations in August alone, while...
Operators of the SystemBC botnet have assembled a global fabric built on compromised commercial virtual servers, sustaining roughly 1,500 active nodes each day. These machines have been repurposed into an infrastructure for relaying malicious...
Experts from Zscaler ThreatLabz have uncovered two malicious packages in the PyPI repository that, upon installation and import, secretly deploy the SilentSync Python trojan—a threat capable of seizing control of developer environments and exfiltrating...
Researchers from the Lat61 Threat Intelligence Team have published a comprehensive analysis of Raven Stealer, a lightweight, furtive infostealer written in Delphi and C++. The report details its credential-theft capabilities, methods for clandestine exfiltration...
Developers of the PureHVNC remote-access trojan have adopted a new level of concealment, brazenly using GitHub to host source code and modules for their malicious toolkit. That is the conclusion of Check Point Research...
The newly discovered Python trojan XillenStealer, identified by researchers at Cyfirma, poses a grave threat to Windows users. Engineered to harvest system information, stored credentials, and cryptocurrency wallets, it also bundles an array of...
A dangerous worm dubbed Shai-Hulud has been uncovered in the JavaScript ecosystem, infecting at least 187 packages in the NPM repository. What sets it apart is that it not only steals developer credentials but...
Acronis researchers have reported a fresh campaign that employs a modified FileFix technique to deliver the StealC data stealer. The attackers staged a convincing, multilingual phishing operation that forges pages for various services —...
Researchers at Socket have disclosed a new attack against the npm ecosystem, in which more than 40 packages were discovered to be laced with embedded malicious code. The compromise mechanism was meticulously engineered: it...
The newly emerged AISURU botnet has powered the largest recorded DDoS assault to date, peaking at 11.5 Tb/s. This surge shattered the spring record of 5.8 Tb/s and underscored how rapidly threats tied to...
In the second quarter of 2025, experts at HP Wolf Security documented a wave of sophisticated attacks in which adversaries employed unconventional living-off-the-land (LOTL) tactics to evade detection. Multiple obscure system utilities were brought...
Experts at Mosyle have uncovered a new strain of malware, named ModStealer, which has proven entirely invisible to antivirus solutions. The program was first uploaded to VirusTotal nearly a month ago without triggering a...
