malware

Over half of Magento stores subjected to PolyShell intrusions

• malware
• ransomware

Over half of Magento stores subjected to PolyShell intrusions

SC Staff March 26, 2026

Intrusions harnessing the PolyShell exploit impacting Adobe Commerce and Magento Open Source instances have already compromised 56.7%...

Read More Read more about Over half of Magento stores subjected to PolyShell intrusions

Silicon Valley’s two biggest dramas have intersected: LiteLLM and Delve

• malware
• Security
• security compliance
• Startups
• TC
• Technology

Silicon Valley’s two biggest dramas have intersected: LiteLLM and Delve

Julie Bort March 25, 2026

LiteLLM offers an AI open source project used by millions that was infected by credential harvesting malware.

Read More Read more about Silicon Valley’s two biggest dramas have intersected: LiteLLM and Delve

Illicit npm packages leverage bogus install logs for covert malware infections

• malware
• ransomware

Illicit npm packages leverage bogus install logs for covert malware infections

SC Staff March 25, 2026

Infosecurity Magazine reports that multiple malicious npm packages with downloader capability have shown bogus installation logs to...

Read More Read more about Illicit npm packages leverage bogus install logs for covert malware infections

Student arrested over ClayRat subscription scheme

• malware
• threat-intelligence
• threat-management

Student arrested over ClayRat subscription scheme

SC Staff March 25, 2026

An Android spyware operation known as ClayRat that briefly gained traction in Russia has imploded within months...

Read More Read more about Student arrested over ClayRat subscription scheme

Illicit VS Code projects tapped to deploy StoatWaffle malware

• malware
• ransomware
• third-party-code

Illicit VS Code projects tapped to deploy StoatWaffle malware

SC Staff March 24, 2026

North Korean threat operation WaterPlum, which runs the Contagious Interview campaign, has leveraged malicious VS Code projects...

Read More Read more about Illicit VS Code projects tapped to deploy StoatWaffle malware

Illicit VS Code projects tapped to deploy StoatWaffle malware

• malware
• ransomware
• third-party-code

Illicit VS Code projects tapped to deploy StoatWaffle malware

SC Staff March 24, 2026

North Korean threat operation WaterPlum, which runs the Contagious Interview campaign, has leveraged malicious VS Code projects...

Read More Read more about Illicit VS Code projects tapped to deploy StoatWaffle malware

Ransomware hits Trio-Tech’s Singaporean subsidiary

• malware
• ransomware

Ransomware hits Trio-Tech’s Singaporean subsidiary

SC Staff March 24, 2026

TrioTech International, a California-based global semiconductor back-end solutions provider offering manufacturing, testing, and distribution services, has disclosed...

Read More Read more about Ransomware hits Trio-Tech’s Singaporean subsidiary

Ransomware Inc. and the startup approach to cybercrime

• leadership
• malware
• ransomware
• security-operations
• soc

Ransomware Inc. and the startup approach to cybercrime

Adam Darrah March 24, 2026

Ransomware gangs act like agile startups — fast, adaptive, and prone to internal fractures.

Read More Read more about Ransomware Inc. and the startup approach to cybercrime

Iran-backed Handala uses Telegram for C2 to push malware, FBI says

• malware
• network-security
• ransomware
• threat-intelligence
• threat-management

Iran-backed Handala uses Telegram for C2 to push malware, FBI says

Steve Zurier March 23, 2026

FBI warns Iran-linked hackers use Telegram as stealthy malware C2, evading detection.

Read More Read more about Iran-backed Handala uses Telegram for C2 to push malware, FBI says

Perseus Android malware evolves from Cerberus and Phoenix for device takeover

• malware

Perseus Android malware evolves from Cerberus and Phoenix for device takeover

SC Staff March 20, 2026

Perseus is distributed through dropper apps found on phishing sites, masquerading as IPTV services to trick users...

Read More Read more about Perseus Android malware evolves from Cerberus and Phoenix for device takeover