malware

Lumma Stealer-spreading ClickFix attack uncovered

• malware
• threat-intelligence

Lumma Stealer-spreading ClickFix attack uncovered

SC Staff March 9, 2026

Threat actors have exploited the Windows Terminal app to facilitate the distribution of the Lumma Stealer malware...

Read More Read more about Lumma Stealer-spreading ClickFix attack uncovered

Trio of RATs deployed in VOID#GEIST malware campaign

• malware
• threat-intelligence

Trio of RATs deployed in VOID#GEIST malware campaign

SC Staff March 9, 2026

Multiple batch scripts have been weaponized to facilitate the delivery of the XWorm, AsyncRAT, and Xeno RAT...

Read More Read more about Trio of RATs deployed in VOID#GEIST malware campaign

Breaking in with CrashFix, supply chain security, and CMMC phase 1 – Anna Pham, David Zendzian, Jacob Horne – ESW #449

• malware
• supply-chain

Breaking in with CrashFix, supply chain security, and CMMC phase 1 – Anna Pham, David Zendzian, Jacob Horne – ESW #449

Matt Alderman March 9, 2026

Read More Read more about Breaking in with CrashFix, supply chain security, and CMMC phase 1 – Anna Pham, David Zendzian, Jacob Horne – ESW #449

Browser extension weaponization for malware delivery examined

• malware

Browser extension weaponization for malware delivery examined

SC Staff March 6, 2026

Threat actors could easily exploit any browser extension to distribute illicit payloads, reports Cybernews.

Read More Read more about Browser extension weaponization for malware delivery examined

Stealer malware distributed via bogus GitHub tools

• malware

Stealer malware distributed via bogus GitHub tools

SC Staff March 6, 2026

Cybernews reports that trojanized ZIP files purporting to be legitimate software, which are hosted in GitHub repositories...

Read More Read more about Stealer malware distributed via bogus GitHub tools

AI-generated vibeware spread in new APT36 campaign

• malware
• threat-intelligence

AI-generated vibeware spread in new APT36 campaign

SC Staff March 6, 2026

AI-generated vibeware spread in new APT36 campaign Intrusions with vibeware, or sloppy AI-generated code, have been launched...

Read More Read more about AI-generated vibeware spread in new APT36 campaign

Chinese APT taps novel malware in telco attacks

• malware
• threat-intelligence

Chinese APT taps novel malware in telco attacks

SC Staff March 6, 2026

BleepingComputer reports that telecommunications providers across South America have been targeted by China-linked advanced persistent threat operation...

Read More Read more about Chinese APT taps novel malware in telco attacks

Wikimedia Foundation hit by JavaScript worm; editing restricted

• malware
• threat-intelligence

Wikimedia Foundation hit by JavaScript worm; editing restricted

SC Staff March 6, 2026

The incident began when a malicious script, hosted on Russian Wikipedia and allegedly linked to previous attacks,...

Read More Read more about Wikimedia Foundation hit by JavaScript worm; editing restricted

Bing-boosted fake OpenClaw installers deliver infostealers, GhostSocks malware

• malware

Bing-boosted fake OpenClaw installers deliver infostealers, GhostSocks malware

SC Staff March 5, 2026

Multiple information-stealing payloads and the GhostSocks proxy malware have been distributed by bogus GitHub-hosted installers for the...

Read More Read more about Bing-boosted fake OpenClaw installers deliver infostealers, GhostSocks malware

Russian phishing campaign hits Ukraine with novel malware

• malware
• phishing
• threat-intelligence

Russian phishing campaign hits Ukraine with novel malware

SC Staff March 5, 2026

Russian phishing campaign hits Ukraine with novel malware Attacks delivering novel malicious payloads have been deployed by...

Read More Read more about Russian phishing campaign hits Ukraine with novel malware