Tag: Watering Hole
-
The Developer’s Trap: EmEditor Supply Chain Attack Drains Credentials
In late December 2025, the architects of the renowned text editor EmEditor issued a formal advisory regarding the compromise of the application’s official distribution portal. Malefactors surreptitiously substituted the authentic installer with a deleterious iteration engineered to disseminate a multi-stage malware suite—an apparatus capable of data exfiltration, evading defensive heuristics, and infiltrating enterprise architectures. Developed…
-
APT24 Used ‘BadAudio’ Malware in 3-Year Espionage Campaign Hitting 1,000+ Sites
Google has disclosed a years-long intelligence operation revealing that APT24, a China-linked threat group, had been deploying a previously unknown malicious tool called BadAudio. The campaign stretched across three years, gradually shifting toward more covert techniques and targeting both individual devices and elements of the broader supply chain. Although the malware had been in active…