Pierluigi Paganini
March 30, 2025
Microsoft Trusted Signing service abused to code-sign malware
Shedding light on the ABYSSWORKER driver
VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware
New Android Malware Campaigns Evading Detection Using Cross-Platform Framework .NET MAUI
ReaderUpdate Reforged | Melting Pot of macOS Malware Adds Go to Crystal, Nim and Rust Variants
Grandoreiro Trojan Distributed via Contabo-Hosted Servers in Phishing Campaigns
Malware found on npm infecting local package with reverse shell
Shifting the sands of RansomHub’s EDRKillShifter
Multiple crypto packages hijacked, turned into info-stealers
CoffeeLoader: A Brew of Stealthy Techniques
PJobRAT makes a comeback, takes another crack at chat apps
Exposing Crocodilus: New Device Takeover Malware Targeting Android Devices
You will always remember this as the day you finally caught FamousSparrow
RedCurl’s Ransomware Debut: A Technical Deep Dive
Blacklock Ransomware: A Late Holiday Gift with Intrusion into the Threat Actor’s Infrastructure
Over 150K websites hit by full-page hijack linking to Chinese gambling sites
Coding Malware in Fancy Programming Languages for Fun and Profit
Trandroid: An Android Mobile Threat Detection System Using Transformer Neural Networks
A Wide and Weighted Deep Ensemble Model for Behavioral Drifting Ransomware Attacks
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, malware)
