Cybersecurity and Malware - Cyber Security Informer

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

“If you need a server for a botnet, for malware, brute, scan, phishing, fakes and any other tasks, please contact us,” BEARHOST’s ad on one forum advises. A fake browser update page pushing mobile malware. And BEARHOST has been cultivating its reputation since at least 2019. Image: Intrinsec.

Malware

Malware Antivirus Software DDOS

CISA warns of RESURGE malware exploiting Ivanti flaw

Security Affairs

MARCH 30, 2025

Cybersecurity and Infrastructure Security Agency (CISA) warns of RESURGE malware, targeting a vulnerability in Ivanti Connect Secure (ICS) appliances. Cybersecurity and Infrastructure Security Agency (CISA) published a Malware Analysis Report (MAR) on a new malware called RESURGE. In January, the U.S.

Malware

Malware Authentication Cybersecurity Encryption

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

The rapid advancement of generative AI has brought both innovation and concern to the cybersecurity landscape. A recent report from Tenable highlights how DeepSeek R1, an open-source AI model, can generate rudimentary malware, including keyloggers and ransomware.

Malware

Malware Cybersecurity Cyber threats Threat Detection

Deceptive Google Meet Invites Lures Users Into Malware Scams

eSecurity Planet

OCTOBER 22, 2024

However, this surge in usage has also opened the door to a growing array of cybersecurity threats. These malware scams lure individuals with fake conference invitations designed to mimic legitimate meeting requests and exploit users’ trust. In an attack, you can restore your system without losing critical files.

Scams

Scams Malware Phishing Social Engineering

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign

Penetration Testing

APRIL 12, 2025

AhnLab Security intelligence Center (ASEC) has revealed a cyberattack campaign where Arabic-speaking attackers are distributing ViperSoftX malware, targeting The post ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign appeared first on Daily CyberSecurity.

Malware

Malware Security Intelligence Cybersecurity Software

FBI deleted China-linked PlugX malware from over 4,200 US computers

Security Affairs

JANUARY 14, 2025

The FBI has removed Chinese PlugX malware from over 4,200 computers in networks across the United States, the U.S. The Justice Department and FBI, along with international partners, announced they deleted PlugX malware from thousands of infected computers worldwide as part of a multi-month law enforcement operation.

Malware

Malware Government Hacking Cybersecurity

Warning over free online file converters that actually install malware

Malwarebytes

MARCH 17, 2025

Instead of converting files, the tools actually load malware onto victims computers. The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). This is the actual malware. Imageconvertors[.]com

Malware

Malware Adware Education Phishing

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

Ramat Gan, Israel, January 7th, 2025, CyberNewswire — CyTwist , a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware. Evasion: AI-generated threats mimic human behavior, complicating detection for security teams.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

Esperts found new DoNot Team APT group’s Android malware

Security Affairs

JANUARY 20, 2025

Researchers linked the threat actor DoNot Teamto a new Android malware that was employed in highly targeted cyber attacks. CYFIRMA researchers linked a recently discovered Android malware to the Indian APT group known as DoNot Team. The group persistently employs similar techniques in their Android malware.”

Malware

Malware Cyber Attacks Mobile Phishing

North Korean Hackers Target Job Seekers with Malware-Laced Video Apps

Penetration Testing

NOVEMBER 18, 2024

This group used malware-infected video conference... The post North Korean Hackers Target Job Seekers with Malware-Laced Video Apps appeared first on Cybersecurity News. A recent report by Unit 42 researchers uncovers a complex phishing campaign linked to a cluster of North Korean IT workers tracked as CL-STA-0237.

Malware

Malware Phishing Cybersecurity

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

SecureWorld News

JANUARY 7, 2025

Cybersecurity in today's world is akin to the enchanted realms of fairy tales, where threats lurk in dark digital forests and heroes wield keyboards instead of swords. Welcome to SecureWorld's theme for 2025: Once Upon a Time in Cybersecurity. Welcome to SecureWorld's theme for 2025: Once Upon a Time in Cybersecurity.

Cybersecurity

Cybersecurity Social Engineering Phishing Engineering

News alert: SpyCloud study shows gaps in EDR, antivirus — 66% of malware infections missed

The Last Watchdog

APRIL 7, 2025

Despite advanced AI detection and telemetry analysis offered in todays EDR solutions, modern infostealer malware is designed to evade even the most sophisticated defenses, using tactics like polymorphic malware, memory-only execution, and exploitation of zero-day vulnerabilities or outdated software.

Antivirus

Antivirus Malware Cybercrime Identity Theft

Python Developers Targeted with Malware During Fake Job Interviews

Schneier on Security

SEPTEMBER 17, 2024

Interesting social engineering attack: luring potential job applicants with fake recruiting pitches, trying to convince them to download malware. The capacity for exploitation at that point is pretty much unlimited, due to the flexibility of Python and how it interacts with the underlying OS.

Malware

Malware Social Engineering Engineering Hacking

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

The Last Watchdog

NOVEMBER 11, 2024

However, before we get too carried away, it is crucial to explore the symbiotic relationship between AR and cybersecurity. This is primarily because AR is still relatively new and a rapidly evolving technology, which ultimately means that it is bound to bring about unprecedented opportunities, challenges, and even risks to cybersecurity.

Cybersecurity

Cybersecurity Social Engineering Technology Threat Detection

PlugX malware deleted from thousands of systems by FBI

Malwarebytes

JANUARY 16, 2025

The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of the Peoples Republic of China (PRC) used a version of PlugX malware to control, and steal information from victims’ computers.

Malware

Malware DNS Internet Internet

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

Jane Frankland

APRIL 10, 2025

Just like the three wise monkeys , some small business owners are unintentionally following a philosophy of see no risk, hear no warning, speak no threat when it comes to cybersecurity. In the context of cybersecurity, its a silent enabler for hackers who thrive on unguarded systems and untrained staff.

Small Business

Small Business Risk Cybersecurity Cyber Risk

The Role and Benefits of AI in Cybersecurity

SecureWorld News

APRIL 13, 2025

In this article, we'll explore how AI enhances cybersecurity, its key benefits, and why businesses are increasingly relying on AI-driven security solutions. How does AI work in cybersecurity? This speeds up response times and reduces the burden on cybersecurity teams.

Cybersecurity

Cybersecurity Artificial Intelligence Threat Detection Cyber threats

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

SecureWorld News

OCTOBER 23, 2024

Securities and Exchange Commission (SEC) announced Tuesday that it has fined four companies $7 million for misleading statements about their cybersecurity incidents, particularly concerning the high-profile 2019 SolarWinds hack. The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions."

Cybersecurity

Cybersecurity Risk Hacking Software

Q&A: Cybersecurity in ‘The Intelligent Era’

IT Security Guru

MARCH 26, 2025

This transformation comes with immense responsibility from our business, IT and especially cybersecurity professionals to keep data safe and their colleagues, friends and family members protected from fraud and intrusion of privacy. With AI evolving rapidly, what new cybersecurity challenges will IT professionals need to tackle?

Cybersecurity

Cybersecurity Encryption Threat Detection Authentication

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Wojtasiak Mark Wojtasiak , VP of Research and Strategy, Vectra AI In the coming year, well see the initial excitement that surrounded AIs potential in cybersecurity start to give way due to a growing sense of disillusionment among security leaders. The SEC Cybersecurity Disclosure Rule highlights transparency in governance.

Cybersecurity

Cybersecurity CISO Risk Government

Video: Salt Typhoon Hacks Major Telecom Giants Using Malware

eSecurity Planet

DECEMBER 4, 2024

With expert commentary and in-depth analysis, this video is essential viewing for anyone interested in cybersecurity, tech news, or protecting their digital privacy. The post Video: Salt Typhoon Hacks Major Telecom Giants Using Malware appeared first on eSecurity Planet.

Hacking

Hacking Malware Telecommunications Cybercrime

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Below is an exhaustive list of key cybersecurity trends to watch out for in 2025. Lets explore the top current cybersecurity trends this year. The challenge?

Cybersecurity

Cybersecurity Insurance Cyber Insurance Risk

Lazarus Group Expands Malicious Campaign on npm, Targets Developers with New Malware

Penetration Testing

APRIL 6, 2025

The threat actors are deploying new npm packages that deliver the previously identified BeaverTail malware and are introducing new packages with remote access trojan (RAT) loader […] The post Lazarus Group Expands Malicious Campaign on npm, Targets Developers with New Malware appeared first on Daily CyberSecurity.

Malware

Malware Cybersecurity

Google's AI Trends Report: Key Insights and Cybersecurity Implications

SecureWorld News

FEBRUARY 25, 2025

Artificial intelligence (AI) is transforming industries at an unprecedented pace, and its impact on cybersecurity is no exception. From automating cybersecurity defenses to combatting adversarial AI threats, the report underscores both the power and pitfalls of AI-driven security.

Cybersecurity

Cybersecurity Social Engineering Artificial Intelligence Cyber threats

CVE-2025-22457: UNC5221 Exploits Ivanti Zero-Day Flaw to Deploy TRAILBLAZE and BRUSHFIRE Malware

Penetration Testing

APRIL 3, 2025

The The post CVE-2025-22457: UNC5221 Exploits Ivanti Zero-Day Flaw to Deploy TRAILBLAZE and BRUSHFIRE Malware appeared first on Daily CyberSecurity. Ivanti has recently disclosed a critical security vulnerability, identified as CVE-2025-22457, affecting several of its widely-used products.

Malware

Malware Cybersecurity VPN

PXA Stealer: New Malware Targets Governments and Education Across Europe and Asia

Penetration Testing

NOVEMBER 17, 2024

Operated by a Vietnamese-speaking threat actor, this campaign leverages a... The post PXA Stealer: New Malware Targets Governments and Education Across Europe and Asia appeared first on Cybersecurity News.

Education

Education Government Malware Cybersecurity

Microsoft Patch Tuesday, November 2024 Edition

Krebs on Security

NOVEMBER 12, 2024

Ben McCarthy , lead cybersecurity engineer at Immersive Labs , called special attention to CVE-2024-43602 , a remote code execution vulnerability in Windows Kerberos , the authentication protocol that is heavily used in Windows domain networks. “This is one of the most threatening CVEs from this patch release,” McCarthy said.

Authentication

Authentication Engineering Malware Passwords

Advanced Malware Targets Cryptocurrency Wallets

Security Boulevard

MARCH 24, 2025

The malware targets many widely used cryptocurrency wallet browser extensions: 1. As I outlined in my 2025 Cybersecurity Predictions , I forecast an increased Nation State focus on the finance sector, with specific emphasis on the cryptocurrency. Bitget Wallet (Formerly BitKeep) 2. Trust Wallet 3. TronLink 4. MetaMask (ethereum) 5.

Cryptocurrency

Cryptocurrency Malware Hacking Cybersecurity

Vidar Stealer Hides in Legitimate BGInfo Tool

Penetration Testing

APRIL 8, 2025

Vidar Stealer, a notorious information-stealing malware that first emerged in 2018, continues to pose a significant threat by employing new distribution methods and evasion techniques. G DATA Security Lab’s analysis has uncovered a recent instance where Vidar Stealer was disguised within a legitimate system information tool.

Malware

Malware Cybersecurity

“Pick Your Poison” Phishing Attack: Credentials or Malware?

Penetration Testing

APRIL 9, 2025

Cybercriminals have upped their game with a phishing campaign so cunning, it offers victims a choicebetween stolen credentials or malware infection. The attack […] The post “Pick Your Poison” Phishing Attack: Credentials or Malware? appeared first on Daily CyberSecurity.

Phishing

Phishing Malware Cybersecurity

DeepSeek users targeted with fake sponsored Google ads that deliver malware

Malwarebytes

MARCH 26, 2025

We dont just report on threatswe remove them Cybersecurity risks should never spread beyond a headline. If you don’t want to see sponsored ads at all then it’s worth considering installing an ad-blocker that will make sure you go straight to the regular search results.

Artificial Intelligence

Artificial Intelligence Advertising Malware Risk

The source code of Banshee Stealer leaked online

Security Affairs

NOVEMBER 26, 2024

Banshee Stealer, a MacOS Malware-as-a-Service, shut down after its source code leaked online. In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more. The code is now available on GitHub. concludes the report.

Malware

Malware Cryptocurrency Encryption Passwords

Phishing Campaign Impersonates Booking.com, Plants Malware

eSecurity Planet

MARCH 14, 2025

A recent phishing campaign has raised alarms among cybersecurity professionals after it impersonated Booking.com to deliver a suite of credential-stealing malware. This command, executed via mshta.exe, downloads and launches various malware families, such as XWorm, Lumma Stealer, VenomRAT, AsyncRAT, Danabot, and NetSupport RAT.

Phishing

Phishing Malware Social Engineering Authentication

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

SecureWorld News

JANUARY 21, 2025

Just as homeowners rely on services like Pestie to protect their spaces from unwanted intruders, cybersecurity professionals use strategic tools and methods to safeguard their organizations from cyber threats. Let's explore the correlation and what cybersecurity professionals can learn from a simple act like spraying for pests.

CISO

CISO Cybersecurity Cyber threats Education

Best WordPress Plugins for Cybersecurity 2025

IT Security Guru

MARCH 14, 2025

Wordfence Security Wordfence Security is one of the most popular cybersecurity plugins for WordPress. It also has a malware scanner that checks your site for viruses and suspicious code. The plugin also scans your website for malware and removes it if necessary. If your site ever gets hacked, Sucuri provides help to clean it up.

Cybersecurity

Cybersecurity Firewall Cyber Attacks Passwords

International law enforcement operation dismantled RedLine and Meta infostealers

Security Affairs

OCTOBER 29, 2024

RedLine and META targeted millions of victims worldwide, according to Eurojust it was one of the largest malware platforms globally. Authorities discovered that over 1 200 servers in dozens of countries were running the malware. ESET released a free online scanner for Redline and META that can help users detect and remove malware.

Identity Theft

Identity Theft Passwords Malware Banking

CVE-2024-11859: ToddyCat Group Hides Malware in ESET’s Scanner to Bypass Security

Penetration Testing

APRIL 7, 2025

This […] The post CVE-2024-11859: ToddyCat Group Hides Malware in ESETs Scanner to Bypass Security appeared first on Daily CyberSecurity. In early 2024, Kaspersky’s investigation into ToddyCat incidents revealed a suspicious file named “version.dll” on multiple devices.

Malware

Malware Software Cybersecurity

New Triada Trojan comes preinstalled on Android devices

Security Affairs

APRIL 2, 2025

The malware was discovered on counterfeit Android devices mimicking popular smartphone models. “The malware has broad functionality and gives attackers almost unlimited control over the gadget” The malware, embedded in the system framework, provides attackers full control over the device. 231 banking malware.

Malware

Malware Cryptocurrency Mobile Firmware

NodeStealer Infostealer: New Python-Based Variant Targets Facebook Ads Manager

Penetration Testing

DECEMBER 22, 2024

The NodeStealer malware, first identified as a JavaScript-based threat, has undergone a transformation into a Python-based infostealer, expanding its capabilities to harvest a broader range of sensitive data.

Malware

Malware Cybersecurity

Operation SalmonSlalom: New Malware Campaign Targets Industrial Organizations in Asia-Pacific

Penetration Testing

FEBRUARY 27, 2025

Kaspersky ICS CERT has uncovered a new malware campaign, dubbed “Operation SalmonSlalom,” specifically targeting industrial organizations across the The post Operation SalmonSlalom: New Malware Campaign Targets Industrial Organizations in Asia-Pacific appeared first on Cybersecurity News.

Malware

Malware Cybersecurity

GuLoader Campaign Targets European Industrial Sector with Evolving Evasion Techniques

Penetration Testing

NOVEMBER 11, 2024

Cado Security Labs has uncovered a targeted GuLoader malware campaign aimed at European industrial and engineering companies.

Engineering

Engineering Malware Cybersecurity

Banshee macOS stealer supports new evasion mechanisms

Security Affairs

JANUARY 10, 2025

In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures. The malware authors claimed it can steal a broad range of data from compromised systems, including browser data, cryptocurrency wallets, and around 100 browser extensions.

Malware

Malware Advertising Antivirus Cybercrime

New advanced FIN7’s Anubis backdoor allows to gain full system control on Windows

Security Affairs

APRIL 2, 2025

The threat actor FIN7 , also known as Savage Ladybug, has developed a new Python-based malware, named Anubis Backdoor, which allows attackers to gain full remote control over infected Windows systems. “The malware is distributed as a ZIP package, which includes a single Python script alongside multiple Python executables.

Antivirus

Antivirus Cybercrime Malware Encryption

Security Vulnerability of Switzerland’s E-Voting System

Schneier on Security

OCTOBER 17, 2023

Like any internet voting system, it has inherent security vulnerabilities: if there are malicious insiders, they can corrupt the vote count; and if thousands of voters’ computers are hacked by malware, the malware can change votes as they are transmitted. To demonstrate this, I built a proof-of-concept demonstration.

Malware

Malware Internet Internet Government

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

CISA warns of RESURGE malware exploiting Ivanti flaw

Trending Sources

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

Deceptive Google Meet Invites Lures Users Into Malware Scams

ViperSoftX Malware: Arabic-Speaking Attackers Exploit PowerShell in New Cyberattack Campaign

FBI deleted China-linked PlugX malware from over 4,200 US computers

Warning over free online file converters that actually install malware

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

Esperts found new DoNot Team APT group’s Android malware

North Korean Hackers Target Job Seekers with Malware-Laced Video Apps

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

News alert: SpyCloud study shows gaps in EDR, antivirus — 66% of malware infections missed

Python Developers Targeted with Malware During Fake Job Interviews

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

PlugX malware deleted from thousands of systems by FBI

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

The Role and Benefits of AI in Cybersecurity

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

Q&A: Cybersecurity in ‘The Intelligent Era’

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Video: Salt Typhoon Hacks Major Telecom Giants Using Malware

Top Cybersecurity Trends to Watch Out For in 2025

Lazarus Group Expands Malicious Campaign on npm, Targets Developers with New Malware

Google's AI Trends Report: Key Insights and Cybersecurity Implications

CVE-2025-22457: UNC5221 Exploits Ivanti Zero-Day Flaw to Deploy TRAILBLAZE and BRUSHFIRE Malware

PXA Stealer: New Malware Targets Governments and Education Across Europe and Asia

Microsoft Patch Tuesday, November 2024 Edition

Advanced Malware Targets Cryptocurrency Wallets

Vidar Stealer Hides in Legitimate BGInfo Tool

“Pick Your Poison” Phishing Attack: Credentials or Malware?

DeepSeek users targeted with fake sponsored Google ads that deliver malware

The source code of Banshee Stealer leaked online

Phishing Campaign Impersonates Booking.com, Plants Malware

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

Best WordPress Plugins for Cybersecurity 2025

International law enforcement operation dismantled RedLine and Meta infostealers

CVE-2024-11859: ToddyCat Group Hides Malware in ESET’s Scanner to Bypass Security

New Triada Trojan comes preinstalled on Android devices

NodeStealer Infostealer: New Python-Based Variant Targets Facebook Ads Manager

Operation SalmonSlalom: New Malware Campaign Targets Industrial Organizations in Asia-Pacific

GuLoader Campaign Targets European Industrial Sector with Evolving Evasion Techniques

Banshee macOS stealer supports new evasion mechanisms

New advanced FIN7’s Anubis backdoor allows to gain full system control on Windows

Security Vulnerability of Switzerland’s E-Voting System

Stay Connected