Chinese state hackers use rootkit to hide ToneShell malware activity

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.

Shai Hulud malware turns developers into unwitting distributors in NPM supply chain attacks

Shai Hulud is a malware campaign first observed in September targeting the JavaScript ecosystem that focuses on supply chain ...
FinanceFeeds

What To Do If Your Crypto Exchange Account Is Compromised

Compromises often involve infections at the device level, so they need to be cleaned thoroughly. Use well-known antivirus software such as Malwarebytes, Norton, Bitdefender, or Kaspersky to run full ...
Infosecurity Magazine

Monitoring Tool Nezha Abused For Stealthy Post-Exploitation Access

In this campaign, Nezha is deployed as a post-exploitation remote access tool rather than malware. Because the software is ...
coinpaper.com

New Malware Targets Crypto Wallets Through Fake Game Mods

Kaspersky recently uncovered “Stealka,” a malware strain disguised as game cheats and pirated software that steals browser ...
Microsoft

Microsoft Digital Defense Report 2025

This year’s Microsoft Digital Defense Report (MDDR) showcases the scale and sophistication of today’s cyber threats, the impact of emerging technologies on those threats, and the strategies that ...
PCMag

Hackers Are Targeting Windows 10. Do This One Thing to Stay Safe

The end of support for Windows 10 means it's now a prime target for malware. But that doesn't mean you have to upgrade to ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

Cybersecurity researchers are calling attention to a new campaign that's leveraging GitHub-hosted Python repositories to distribute a previously undocumented JavaScript-based Remote Access Trojan (RAT ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
bitnewsbot

New JS#SMUGGLER Campaign Distributes NetSupport RAT Malware

Cybersecurity researchers have identified a new malware campaign called JS#SMUGGLER that spreads the remote access trojan NetSupport RAT via compromised websites. The campaign uses several steps: ...
SciELO

Translation and validation of the Second Victim Experience and Support Tool-Revised into Brazilian Portuguese

INTRODUCTION: The term second victim arises when a healthcare professional experiences an adverse event that has an emotional impact and/or physical suffering for the healthcare professional. The ...
USA Today

PDF Editor Malware Risks: How Foxit & Files Editor Lead in Security and Support

Managing sensitive business documents online presents serious challenges, especially when using PDF editors. Many companies unknowingly expose themselves to malware, phishing, or insecure platforms ...