An attack upon a single, ubiquitous instrument has imperceptibly metamorphosed into a catastrophic chain reaction, presently contaminating packages across the entire expanse of the npm ecosystem. This venomous code does not merely languish within...
A new multifunctional Windows trojan dubbed NANOREMOTE leverages a cloud-based file storage service as a covert command-and-control hub, complicating detection while providing attackers with a resilient channel for data exfiltration and the delivery of...
The emergence of a new malicious tool within the React2Shell attack chain has become a notable development amid the surge of compromises that followed the disclosure of CVE-2025-55182. This time, the activity goes far...
A previously obscure Linux backdoor known as GhostPenguin has emerged from the shadows thanks to automated threat hunting, in which Trend Research leveraged AI to analyze thousands of undetected samples from VirusTotal. Analysts uncovered...
Microsoft has uncovered a new strain of malware, dubbed SesameOp, and released detailed findings on its operation. This backdoor stands out for its unconventional design: its creators leveraged the OpenAI Assistants API as a...
Experts at Silent Push have released an in-depth study on subdomain rental services, often referred to in documentation and forums as Dynamic DNS. These platforms allow any user to acquire a third-level domain and...
At the beginning of 2025, Trellix specialists uncovered a sweeping cyber-espionage campaign targeting diplomatic missions in Seoul. Between March and July, at least nineteen phishing attacks were recorded, in which North Korean–linked actors impersonated...
Kaspersky Lab has reported a renewed wave of cyberattacks leveraging Cobalt Strike Beacon—a legitimate remote administration tool frequently repurposed for system compromise and data exfiltration. The malware is disseminated through encrypted code embedded within...
Hackers have ramped up their attacks on vulnerable Linux servers with exposed SSH access, deploying the SVF Botnet—a simple yet effective malicious framework designed for conducting DDoS attacks and cryptocurrency mining. This revelation comes...
Experts at SEQRITE Labs have uncovered a large-scale cyber-espionage campaign dubbed CargoTalon, specifically targeting personnel within a key enterprise of Russia’s aviation industry. The operation employs highly targeted phishing techniques, disguised as essential logistics...