Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers
Oct 21, 2025Ravie LakshmananCyber Espionage / Threat Intelligence A new malware attributed to the Russia-linked hacking group known as COLDRIVER...
Malware
CAPI Backdoor targets Russia’s auto and e-commerce sectors
CAPI Backdoor targets Russia’s auto and e-commerce sectors Pierluigi Paganini October 20, 2025 A new campaign targets Russia’s auto and...
Security Affairs newsletter Round 546 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 546 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini October 19, 2025 A new round of...
Winos 4.0 hackers expand to Japan and Malaysia with new malware
Winos 4.0 hackers expand to Japan and Malaysia with new malware Pierluigi Paganini October 18, 2025 Winos 4.0 hackers expand...
From Airport chaos to cyber intrigue: Everest Gang takes credit for Collins Aerospace breach
From Airport chaos to cyber intrigue: Everest Gang takes credit for Collins Aerospace breach Pierluigi Paganini October 18, 2025 Everest...
Silver Fox Expands Winos 4.0 Attacks to Japan and Malaysia via HoldingHands RAT
The threat actors behind a malware family known as Winos 4.0 (aka ValleyRAT) have expanded their targeting footprint from China...
Microsoft revokes 200+ certificates abused by Vanilla Tempest in fake Teams campaign
Microsoft revokes 200+ certificates abused by Vanilla Tempest in fake Teams campaign Pierluigi Paganini October 17, 2025 Microsoft revoked 200+...
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits Pierluigi Paganini October 16, 2025 Hackers exploit...
Qilin Ransomware announced new victims
Qilin Ransomware announced new victims Pierluigi Paganini October 15, 2025 Resecurity’s new report details how the Qilin RaaS group relies...
Researchers warn of widespread RDP attacks by 100K-node botnet
Researchers warn of widespread RDP attacks by 100K-node botnet Pierluigi Paganini October 14, 2025 A botnet of 100K+ IPs from...
China’s Flax Typhoon Exploits ArcGIS App for Year-Long Persistence
A China-backed threat group exploited what ReliaQuest researchers called a “common security blind spot” to maintain persistence in a widely...
#Pixnapping: Android Timing Attack Sends Google Back to the Drawing Board
Researchers discover a new way to steal secrets from Android apps.Anything any Android app can display is vulnerable to the Pixnapping...
Oracle Warns of New EBS Vulnerability That Allows Remote Access
Oracle over the weekend issued another security alert about a vulnerability in its E-Business Suite (EBS), the software family that...
Astaroth Trojan abuses GitHub to host configs and evade takedowns
Astaroth Trojan abuses GitHub to host configs and evade takedowns Pierluigi Paganini October 13, 2025 The Astaroth banking Trojan uses...
Google, Mandiant expose malware and zero-day behind Oracle EBS extortion
Google, Mandiant expose malware and zero-day behind Oracle EBS extortion Pierluigi Paganini October 13, 2025 Google and Mandiant link Oracle...
