Malware

Most Recent

Related Videos

Malware

MuddyWater targets Middle East with new Rust-based malware

SC StaffJanuary 12, 2026

The campaign leverages icon spoofing and malicious Microsoft Word documents to deploy the RustyWater implant.

(Credit: Araki Illustrations – stock.adobe.com)

Malware

Malicious npm packages spread novel NodeCordRAT malware

SC StaffJanuary 9, 2026

Threat actors have targeted cryptocurrency developers with three Bitcoin library-spoofing npm packages to deploy the NodeCordRAT malware, which pilfers Google Chrome-stored credentials, MetaMask seed phrases, digital keys, and API secrets, according to HackRead.

Application security

WhatsApp worm harnessed to deploy Astaroth banking trojan

SC StaffJanuary 9, 2026

Attackers have exploited WhatsApp to compromise Brazilian users with the Astaroth banking trojan as part of the new Boto-Cor-de-Rosa campaign, SiliconANGLE reports.

Malware

Ghost Tap Android malware leveraged for payment data theft

SC StaffJanuary 8, 2026

Chinese threat operations TX-NFC and NFU Pay have been leveraging APKs masquerading as banking and financial apps to spread the NFC-enabled Ghost Tap Android malware that pilfers credit card details in social engineering campaigns that were mostly aimed at Brazil, Italy, Malaysia, Turkey, Uzbekistan, Greece, and Indonesia. , according to GBHackers News.

Malware

Increased stealth integrated into flexible pkr_mtsi malware loader

SC StaffJanuary 8, 2026

Increased stealth integrated into flexible pkr_mtsi malware loader Infosecurity Magazine reports that the illicit Windows packer pkr_mtsi, used to deploy the Vidar, Oyster, Vanguard Stealer, and Supper payloads through counterfeit installers of popular utilities, has been upgraded with hashed API resolution, more robust obfuscation, and enhanced anti-analysis mechanisms over the last eight months.

Malware

Cryptocurrency, blockchain projects subjected to GoBruteforcer botnet intrusions

SC StaffJanuary 8, 2026

BleepingComputer reports that over 50,000 internet-exposed servers could be compromised in the latest wave of attacks involving the GoBruteforcer botnet, also known as GoBrut, which has been aimed at cryptocurrency and blockchain project databases.

Malware

New Black Cat SEO poisoning campaign spreads malware via software searches

SC StaffJanuary 8, 2026

Fake websites promoting widely used software have been leveraged by the Black Cat threat operation to deploy an information-stealing backdoor as part of a new SEO poisoning campaign, which has compromised nearly 277,800 Chinese hosts from Dec. 7 to Dec. 20, according to The Hacker News.

Malware

Activity of CloudEyE malware spikes, report finds

SC StaffJanuary 7, 2026

Attempted CloudEyE malware-as-a-service downloader and cryptor infections exceeded 100,000 during the second half of 2025, which is 30 times higher than in the first half of the year, according to GBHackers News.

Malware

Related Videos

Lessons from Ukraine: How cyberwar shapes security at home

MuddyWater targets Middle East with new Rust-based malware

Malicious npm packages spread novel NodeCordRAT malware

WhatsApp worm harnessed to deploy Astaroth banking trojan

Ghost Tap Android malware leveraged for payment data theft

Increased stealth integrated into flexible pkr_mtsi malware loader

Cryptocurrency, blockchain projects subjected to GoBruteforcer botnet intrusions

New Black Cat SEO poisoning campaign spreads malware via software searches

Activity of CloudEyE malware spikes, report finds

Fast Five

Selected by the SC Media Editorial team every Tuesday.