malware

Attackers exploit Fortinet flaws to deploy Qilin ransomwareAttackers exploit Fortinet flaws to deploy Qilin ransomware

Attackers exploit Fortinet flaws to deploy Qilin ransomware

Qilin ransomware now exploits Fortinet vulnerabilities to achieve remote code execution on impacted devices. Threat intelligence firm PRODAFT warned that…

4 weeks ago
Russia-linked threat actors targets Ukraine with PathWiper wiperRussia-linked threat actors targets Ukraine with PathWiper wiper

Russia-linked threat actors targets Ukraine with PathWiper wiper

A Russia-linked threat actor targeted a critical infrastructure organization in Ukraine with a new destructive malware dubbed PathWiper. Russia-linked threat…

4 weeks ago
U.S. Offers $10M bounty for info on RedLine malware creator and state hackersU.S. Offers $10M bounty for info on RedLine malware creator and state hackers

U.S. Offers $10M bounty for info on RedLine malware creator and state hackers

The U.S. offers up to $10M for info on state hackers linked to RedLine malware and its creator, Maxim Rudometov,…

4 weeks ago
Play ransomware group hit 900 organizations since 2022Play ransomware group hit 900 organizations since 2022

Play ransomware group hit 900 organizations since 2022

A joint advisory from the US and Australian authorities states that Play ransomware has hit approximately 900 organizations over the…

4 weeks ago
New versions of Chaos RAT target Windows and Linux systemsNew versions of Chaos RAT target Windows and Linux systems

New versions of Chaos RAT target Windows and Linux systems

Acronis researchers reported that new Chaos RAT variants were employed in 2025 attacks against Linux and Windows systems. Acronis TRU…

1 month ago
Android banking trojan Crocodilus rapidly evolves and goes globalAndroid banking trojan Crocodilus rapidly evolves and goes global

Android banking trojan Crocodilus rapidly evolves and goes global

A new Android banking trojan called Crocodilus is being used in a growing number of campaigns targeting users in Europe…

1 month ago
Cryptojacking campaign relies on DevOps toolsCryptojacking campaign relies on DevOps tools

Cryptojacking campaign relies on DevOps tools

A cryptojacking campaign is targeting exposed DevOps servers like Docker and Gitea to secretly mine cryptocurrency. Wiz researchers uncovered a…

1 month ago
Police took down several popular counter-antivirus (CAV) services, including AvCheckPolice took down several popular counter-antivirus (CAV) services, including AvCheck

Police took down several popular counter-antivirus (CAV) services, including AvCheck

On May 27, 2025, authorities seized crypting service sites (including AvCheck, Cryptor, and Crypt.guru) used by vxers to test malware…

1 month ago
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape 60…

1 month ago
China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malwareChina-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

Google says China-linked group APT41 controlled malware via Google Calendar to target governments through a hacked site. Google warns that…

1 month ago