Flux RSS

Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. "Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it to a Cobra DocGuard server that has been compromised by the attackers, masking the data exfiltration process as legitimate

Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices

Cybersecurity researchers have disclosed a new Android malware family called Perseus that's being actively distributed in the wild with an aim to conduct device takeover (DTO) and financial fraud. Perseus is built upon the foundations of Cerberus and Phoenix, at the same time evolving into a "more flexible and capable platform" for compromising Android devices through dropper apps distributed

ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data

When a Magecart payload hides inside the EXIF data of a dynamically loaded third-party favicon, no repository scanner will catch it – because the malicious code never actually touches your repo. As teams adopt Claude Code Security for static analysis, this is the exact technical boundary where AI code scanning stops and client-side runtime execution begins. A detailed analysis of where Claude

The FBI wants to hear from gamers who have downloaded Steam titles containing malware

PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse

The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker

Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers

BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data

A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign

Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks

Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue

UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation

Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks

Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers

Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure

Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident

University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday

A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET