Malware

Security Affairs newsletter Round 566 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 9 March 2026

Security Affairs newsletter Round 566 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini March 08, 2026 A new round of...

How well can Agentic AI handle complex security needs

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations

AndyC 7 March 2026

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations Pierluigi Paganini March 06, 2026 Iran-linked APT MuddyWater targeted U.S. organizations, deploying...

The Chrome Extension Backdoor: How ‘Productivity Tools’ Became Enterprise Attack Vectors

AndyC 7 March 2026

In December 2024, millions of users woke up to find that their "productivity tool" Chrome extensions had transformed overnight...

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

AndyC 7 March 2026

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer Pierluigi Paganini March 06, 2026 Microsoft warns of...

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

AndyC 7 March 2026

Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various...

Iran-nexus APT Dust Specter targets Iraq officials with new malware

AndyC 7 March 2026

Iran-nexus APT Dust Specter targets Iraq officials with new malware Pierluigi Paganini March 06, 2026 A campaign by Iran-linked group...

Phobos Ransomware admin faces up to 20 years after guilty plea

AndyC 6 March 2026

Phobos Ransomware admin faces up to 20 years after guilty plea Pierluigi Paganini March 05, 2026 Russian national Evgenii Ptitsyn...

Russian APT targets Ukraine with BadPaw and MeowMeow malware

AndyC 6 March 2026

Russian APT targets Ukraine with BadPaw and MeowMeow malware Pierluigi Paganini March 05, 2026 Researchers uncovered a Russian campaign targeting...

Latest OpenClaw Security Risks are Fake GitHub Repositories Used to Deploy Infostealers

AndyC 6 March 2026

The highly popular and risk-riddled OpenClaw personal AI assistant is being used by bad actors to target users with...

Google uncovers Coruna iOS Exploit Kit targeting iOS 13–17.2.1

AndyC 5 March 2026

Google uncovers Coruna iOS Exploit Kit targeting iOS 13–17.2.1 Pierluigi Paganini March 05, 2026 Google warns of the Coruna iOS...

From phishing to Google Drive C2: Silver Dragon expands APT41 playbook

AndyC 5 March 2026

From phishing to Google Drive C2: Silver Dragon expands APT41 playbook Pierluigi Paganini March 04, 2026 APT group Silver Dragon,...

Shadow AI: When Everyone Becomes a Data Leak Waiting to Happen

Data breach at University of Hawaiʻi Cancer Center impacts 1.2 Million individuals

AndyC 5 March 2026

Data breach at University of Hawaiʻi Cancer Center impacts 1.2 Million individuals Pierluigi Paganini March 04, 2026 A ransomware attack...

Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets

AndyC 4 March 2026

Image: madedee/Adobe A once-trusted Chrome extension with thousands of users was quietly transformed into a malware delivery vehicle, exposing how...

SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms

AndyC 3 March 2026

Earlier this year, we asked our team where they expect open source cyberattacks to go next. Sonatype Principal Security...

SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms

AndyC 3 March 2026

Earlier this year, we asked our team where they expect open source cyberattacks to go next. Sonatype Principal Security...

Malware

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations

The Chrome Extension Backdoor: How ‘Productivity Tools’ Became Enterprise Attack Vectors

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

Iran-nexus APT Dust Specter targets Iraq officials with new malware

Phobos Ransomware admin faces up to 20 years after guilty plea

Russian APT targets Ukraine with BadPaw and MeowMeow malware

Google uncovers Coruna iOS Exploit Kit targeting iOS 13–17.2.1

From phishing to Google Drive C2: Silver Dragon expands APT41 playbook

Data breach at University of Hawaiʻi Cancer Center impacts 1.2 Million individuals

Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets

SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms

SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms

Face value: What it takes to fool facial recognition

Cyber fallout from the Iran war: What to have on your radar

Sednit reloaded: Back in the trenches

What cybersecurity actually does for your business

How SMBs use threat research and MDR to build a defensive edge

Protecting education: How MDR can tip the balance in favor of schools

Donate Bitcoin to this address

Donate Ethereum to this address

How to Secure Tax Documents Before Sending to Your Accountant

French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure

Critical Ubiquiti UniFi UniFi security flaw allows potential account hijacking

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

Sonatype Discovers Two Malicious npm Packages

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed