Tag: malware

A Mini Shai Hulud worm linked to TeamPCP has compromised npm and PyPI packages across TanStack, Mistral AI, Guardrails AI and others, deploying credential stealers, CI/CD exploits, and cross ecosystem propagation techniques.

Newly identified TCLBANKER banking trojan targets 59 financial platforms using WhatsApp and Outlook worms, highlighting evolving cybercrime tactics.

China linked group Silver Fox targets organizations in India and Russia using phishing emails with tax themed lures to distribute ValleyRAT and newly identified ABCDoor malware, according to Kaspersky analysis.

A critical cPanel vulnerability CVE 2026 41940 is being actively exploited to target government, military, and MSP networks globally, enabling authentication bypass and remote control, with thousands of systems impacted.

AI assisted cyber attacks are rising sharply in 2026, lowering barriers for attackers, accelerating exploit timelines, and increasing phishing, malware, and supply chain threats globally.

A global operation led by U.S., China, and UAE authorities dismantled nine crypto scam centers, arrested 276 suspects, and seized $701 million while exposing large scale cryptocurrency fraud and human trafficking linked cyber operations.

Security researchers identified 73 fake Microsoft VS Code extensions on Open VSX tied to GlassWorm v2 malware campaign targeting developers through supply chain attacks and sleeper packages.

Tropic Trooper launches a cyber campaign using a trojanized SumatraPDF reader and GitHub powered AdaptixC2 to target users in Taiwan, Japan, and South Korea.

Researchers have identified Lotus Wiper, a destructive malware targeting Venezuela’s energy sector, capable of wiping systems, deleting recovery mechanisms, and disabling infrastructure through multi stage batch scripts and disk overwriting techniques.

OpenAI revokes its macOS app signing certificate after a malicious Axios supply chain attack, confirming no user data compromise while outlining security measures and broader ecosystem risks.

A compromised Smart Slider 3 Pro update distributed via Nextend servers delivered a backdoored version affecting WordPress and Joomla sites, enabling remote access and persistence.

A supply chain attack linked to Trivy has led to the spread of CanisterWorm malware across dozens of npm packages, exploiting tokens and decentralized infrastructure.