In-depth coverage of the latest Ransomware & Malware developments, trends, and analysis — curated daily.
A sophisticated cyber campaign is exploiting a social engineering trick called ClickFix to push potent password-stealing malware. Australia's top cybersecurity agency is sounding the alarm.
Imagine walking into a cutting-edge AI lab, only to find it's a Trojan horse. That's precisely what happened on Hugging Face, a hub for AI innovation, when a malicious repository masqueraded as an official OpenAI tool.
Forget clunky phishing emails. A new banking trojan, TCLBANKER, is arriving via WhatsApp and Outlook worms, acting like a digital wildfire through your contacts. It's a stark reminder that the age of simple malware is over.
The persistent threat of data theft just got a new vector. VoidStealer malware has figured out how to bypass Google Chrome's App-Bound Encryption, leaving user data vulnerable.
Linux developers, watch your backs. A new stealthy malware, dubbed Quasar Linux (QLNX), is slithering into development environments. This isn't your grandpa's virus; it's a sophisticated implant designed for long-term infiltration and credential theft.
Imagine your trusted digital toolkit suddenly becoming a Trojan horse. That's precisely the terrifying reality for thousands using DAEMON Tools, thanks to a sophisticated supply chain attack.
Forget compromising your phone. The latest CloudZ malware variant has figured out a sneakier way to nab your SMS codes and one-time passwords: right from your Windows desktop.
Think Telegram's neat little Mini Apps are all fun and games? Think again. Scammers are turning them into Trojan horses.
Everyone figured VECT 2.0 was the next slick RaaS contender, partnering with BreachForums and supply-chain hackers. Turns out, its encryption engine self-destructs large files — making it a wiper by bug.
Remember those fake booking emails promising a dream vacation? Turns out they're still around, and now they're packing a nastier punch. The shadowy TA558 group is back, and they've upgraded their malware delivery system.
After a three-year hiatus, Brazilian cybercrime collective LofyGang is back, ditching their old supply chain tactics for a direct assault on Minecraft players with a potent new stealer. This marks a significant evolution in their operational playbook.
Imagine paying a thief only to find they've smashed your valuables beyond repair. That's the terrifying reality of VECT 2.0, a ransomware that acts like a digital sledgehammer, crushing data instead of locking it.