Sophisticated Job Scam Targets Developer with Malicious Code
A Serbian web developer fell victim to a sophisticated job scam involving a fake blockchain company, leading to a significant security breach.
Tag malware
Malicious KICS Docker Images and VS Code Extensions Compromise Checkmarx Supply Chain
Recent findings reveal that malicious Docker images and Visual Studio Code extensions have compromised Checkmarx's software supply chain, posing significant risks to users.
SystemBC C2 Server Exposes Over 1,570 Victims Linked to The Gentlemen Ransomware
Recent research has uncovered a significant botnet associated with The Gentlemen ransomware operation, revealing over 1,570 compromised victims worldwide due to the deployment of SystemBC malware.
GlassWorm Campaign Utilizes Zig Dropper to Compromise Developer IDEs
The GlassWorm campaign has evolved, employing a new Zig dropper to stealthily infect integrated development environments (IDEs), including Microsoft Visual Studio Code and its forks.
APT28: Russian Military Hacks Consumer Routers to Harvest Credentials
A recent report reveals that the Russian military has compromised thousands of consumer routers to gather sensitive information from users worldwide.
Iran-Linked Hackers Target U.S. Critical Infrastructure
Iran-affiliated cyber actors have been disrupting U.S. critical infrastructure by targeting internet-exposed programmable logic controllers (PLCs), leading to operational issues and financial losses.
APT28: Ongoing Router Attacks by Russia’s Fancy Bear Targeting Credentials
The UK's National Cyber Security Centre warns of continued router attacks by the Russian group APT28, affecting over 200 organizations and 5,000 devices.
cyber espionage: China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
A China-aligned threat actor, TA416, has intensified its targeting of European government and diplomatic organizations since mid-2025, employing sophisticated phishing techniques and malware delivery methods.
CERT-UA Impersonation Campaign Distributes AGEWHEEZE Malware
A recent phishing campaign impersonating Ukraine's CERT-UA has attempted to distribute AGEWHEEZE malware to various organizations, with limited success.
WhatsApp Messages Exploited in Multi-Stage Malware Attack
A recent security alert reveals that attackers are using WhatsApp messages to deliver malicious Microsoft Installer packages, compromising user systems and data.
