WhatsApp Web malware spreads banking Trojan automatically

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

Never-before-seen Linux malware is “far more advanced than typical”

Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that ...
SecurityWeek

VoidLink Linux Malware Framework Targets Cloud Environments

The highly modular VoidLink Linux malware framework contains loaders, implants, and rootkits and can operate in cloud ...

Exposed malware control panels could reveal criminal secrets

CyberArk exploited StealC’s control panel via source leak and XSS flaw Researchers exposed attacker “YouTubeTA,” who stole ...
SecurityWeek

Malicious Chrome Extension Crashes Browser in ClickFix Variant ‘CrashFix’

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

Chinese-linked hackers target US entities with Venezuelan-themed malware

A Chinese-linked cyberespionage group targeted U.S. government and policy-related officials with Venezuela-themed phishing ...
Infosecurity Magazine

Researchers Uncover PDFSIDER Malware Built for Long-Term, Covert System Access

At the core of PDFSIDER is an encrypted command-and-control (C2) channel. The malware embeds the Botan cryptographic library and uses AES-256-GCM authenticated encryption, ensuring that command ...

StealC hackers hacked as researchers hijack malware control panels

A cross-site scripting (XSS) flaw in the web-based control panel used by operators of the StealC info-stealing malware ...

New VoidLink malware framework targets Linux cloud servers

A newly discovered advanced cloud-native Linux malware framework named VoidLink focuses on cloud environments, providing ...