News 新たなマルウェア「CrystalRAT」、RAT、ステラー、いたずらウェアの機能を追加
CrystalRATと呼ばれる新しいマルウェア・アズ・ア・サービスがTelegramで宣伝されており、リモートアクセス、データ窃盗、キーロギング、クリップボードハイジャックの機能を提供している。 このマルウェアは1月に登場し、段階的なサブス...
malware
News 
News Google Play上のAndroidマルウェア「NoVoice」が230万台の端末に感染
NoVoiceと名付けられた新しいAndroidマルウェアは、既知の脆弱性を悪用してrootアクセスを獲得し、Google Playストアの50以上のアプリを通じて配布され、少なくとも230万ダウンロードされた。 悪意のあるペイロードを搭載...
News Hackers compromise Axios npm package to drop cross-platform malware
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
News New RoadK1ll WebSocket implant used to pivot on breached networks
A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to...
News Apple adds macOS Terminal warning to block ClickFix attacks
Apple has introduced a security feature in macOS Tahoe 26.4 that blocks pasting and executing potentially harmful comman...
News New Infinity Stealer malware grabs macOS data via ClickFix lures
A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an execu...
News Suspected RedLine infostealer malware admin extradited to US
An Armenian suspect was extradited to the United States to face criminal charges for allegedly helping manage RedLine, o...
News New Torg Grabber infostealer malware targets 728 crypto wallets
A new info-stealing malware called Torg Grabber is stealing sensitive data from 850 browser extensions, more than 700 of...
News TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detec...
News Trivy supply-chain attack spreads to Docker, GitHub repos
The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker ima...