Malware

The updated CoolClient malware, deployed via legitimate software from Sangfor, refines existing features like system profiling, keylogging, and tunneling.

Malware spread through eScan antivirus supply chain compromise Infosecurity Magazine reports that MicroWorld Technologies' update infrastructure has been compromised to deliver malicious updates for its eScan antivirus software that spread multi-stage malware as part of a global supply chain compromise.

Tools used to protect users in the aftermath of Shai-Hulud may no longer work, security pros say.

Stanley is concerning because it functions as a full-featured service, with the most expensive version claiming to guarantee that malicious apps will pass the Chrome Web Store's security checks.

The campaign employs a sophisticated attack chain, beginning with a ZIP file containing hidden malicious files.

The attack begins with a deceptive CAPTCHA prompt, i.e. ClickFix, tricking users into manually executing a command via the Windows Run dialog.

Malicious actors have been using fake CAPTCHA verification pages to facilitate malware deployment, reports Cyber Security News.

Windows systems in South Korea have been compromised with MoonPeak malware in advanced intrusions involving the exploitation of LNK files, according to GBHackers News.