GoldenJackal strikes again—targeting high-profile, air-gapped networks in embassies and government entities with sophisticated #malware like JackalWorm.

Read: https://thehackernews.com/2024/10/goldenjackal-target-embassies-and-air.html

Use of USB drives to exfiltrate data underscores the importance of monitoring offline systems.

🛑 A new spear-phishing campaign in Brazil is using a clever trick to bypass security guardrails and deliver the dangerous Astaroth #malware.

Learn how to protect your organization from this growing threat: https://thehackernews.com/2024/10/astaroth-banking-malware-resurfaces-in.html

⚠️ Alert for developers - Three packages found to contain the BeaverTail #malware linked to North Korean cyber campaigns.

Find details here: https://thehackernews.com/2024/10/beavertail-malware-resurfaces-in.html

⚠️ Russian espionage group UNC5812 is using Telegram to deliver #malware designed to undermine military recruitment in Ukraine.

Threats like SUNSPINNER and CraxsRAT exploit vulnerabilities in #Android and Windows.

Read: https://thehackernews.com/2024/10/russian-espionage-group-targets.html

Researchers have uncovered a malicious Python package posing as a #cryptocurrency trading tool. Downloaded over 1,300 times before removal, this #malware affects Windows and macOS systems.

Read: https://thehackernews.com/2024/10/researchers-uncover-python-package.html

⚠️ Alert: SYS01stealer is on the rise! This #malware not only steals data but exploits #Facebook ads to amplify its reach, making it a unique threat for businesses relying on social media for marketing.

Learn more: https://thehackernews.com/2024/10/malvertising-campaign-hijacks-facebook.html

🚨 Hundreds of typosquatted versions targeting npm developers are attempting to deliver cross-platform #malware by employing Ethereum smart contracts for command-and-control (C2) communications.

Read: https://thehackernews.com/2024/11/malware-campaign-uses-ethereum-smart.html

🚨 Cyber alert: The CopyRh(ight)adamantys phishing campaign is leveraging copyright themes to spread the Rhadamanthys stealer, while Kaspersky reveals SteelFox #malware, exploiting vulnerable drivers for data theft.

Learn more: https://thehackernews.com/2024/11/steelfox-and-rhadamanthys-malware-use.html

North Korean hackers are ramping up attacks on crypto firms with a sophisticated #malware campaign.

Disguised as PDF files, this multi-stage malware is designed to evade detection and exploit macOS vulnerabilities.

Read more — https://thehackernews.com/2024/11/north-korean-hackers-target-crypto.html

🦠💻 Researchers unveil CRON#TRAP, a new #malware campaign using a Linux virtual instance to compromise Windows systems.

Read the full article to stay informed 👉 https://thehackernews.com/2024/11/new-crontrap-malware-infects-windows-by.html

Warning -- PXA Stealer, a new Python-based #malware, is targeting European & Asian gov and education sectors, stealing sensitive data like credentials & financial info.

Learn more: https://thehackernews.com/2024/11/vietnamese-hacker-group-deploys-new-pxa.html

🚨 New stealth #malware "BabbleLoader" is bypassing AI detection with a slew of evasive tricks, making it one of the most sophisticated threats in the wild.

Learn how BabbleLoader works and how to defend against it: https://thehackernews.com/2024/11/new-stealthy-babbleloader-malware.html

🚨 Facebook Ads Manager under attack!

A revamped python-based NodeStealer #malware now targets Facebook business accounts, harvesting credit card data from browsers. It utilizes techniques like Windows Restart Manager to unlock database files, junk code injection, and dynamic execution of Python scripts.

🔗 Find out how: https://thehackernews.com/2024/11/nodestealer-malware-targets-facebook-ad.html

Cybercriminals are using Godot Engine, a popular open-source game engine, to spread #malware undetected across Windows, macOS, and Linux devices.

Over 17,000 systems have been infected since June 2024.

Find details here — https://thehackernews.com/2024/11/cybercriminals-exploit-popular-game.html

Manufacturing & healthcare sectors are being targeted by SmokeLoader #malware—modular, evasive, and deadly.

With plugins that steal data, mine crypto, and launch DDoS, no system is safe.

Full story here: https://thehackernews.com/2024/12/smokeloader-malware-resurfaces.html

Russia-linked APT group Turla has been hijacking the infrastructure of a Pakistani hacking group to spy on Afghan and Indian government targets by deploying custom #malware, TwoDash and Statuezy.

Learn more: https://thehackernews.com/2024/12/russia-linked-turla-exploits-pakistani.html

🔒 ZLoader #malware is back—with a stealthy upgrade. The latest version employs DNS tunneling for encrypted communication, raising the stakes for detection efforts.

This isn’t just an update; ZLoader now includes an interactive shell capable of executing over a dozen commands, a game-changer for #ransomware attacks.

Dive into the details. https://thehackernews.com/2024/12/zloader-malware-returns-with-dns.html

🚨 A trusted Windows feature, UI Automation, can be exploited by #malware to bypass EDR detection, execute stealthy commands, and steal data undetected.

🔗 Explore how this attack works: https://thehackernews.com/2024/12/new-malware-technique-could-exploit.html

A Russian state-sponsored group, Secret Blizzard, is leveraging other hackers’ #malware to deploy its tools in Ukraine, raising the stakes in cyber warfare.

Read the full story: https://thehackernews.com/2024/12/secret-blizzard-deploys-kazuar-backdoor.html