Threats

Developer-Targeting Glassworm Malware Abuses npm, PyPI, OpenVSX, and GitHub Infection%20cycle%20(Source%20-%20CrowdStrike).webp

Infection%20cycle%20(Source%20-%20CrowdStrike).webp

Developer-Targeting Glassworm Malware Abuses npm, PyPI, OpenVSX, and GitHub

Tushar Subhra Dutta May 27, 2026

A dangerous malware campaign known as Glassworm has been spreading through the tools that software developers trust...

Attackers Abuse Open RDP Ports to Gain Initial Access Into Business Networks

Attackers Abuse Open RDP Ports to Gain Initial Access Into Business Networks

Tushar Subhra Dutta May 27, 2026

There is a decades-old misconfiguration sitting quietly inside countless business networks, and attackers are still making full...

Quasar Linux RAT Targets Developers With Fileless Execution and eBPF Rootkit

Quasar Linux RAT Targets Developers With Fileless Execution and eBPF Rootkit

Tushar Subhra Dutta May 26, 2026

A newly discovered Linux malware known as Quasar Linux, or QLNX, is actively targeting software developers and...

China-Linked Hackers Target Southeast Asian Edge Routers With Custom Linux Implant

China-Linked Hackers Target Southeast Asian Edge Routers With Custom Linux Implant

Tushar Subhra Dutta May 26, 2026

A sophisticated China-linked hacking group has been caught targeting edge routers across Southeast Asia, deploying a custom-built...

NightSpire Ransomware Uses RDP Access and Remote Admin Tools for Stealthy Persistence

NightSpire Ransomware Uses RDP Access and Remote Admin Tools for Stealthy Persistence

Tushar Subhra Dutta May 26, 2026

A new ransomware threat is making waves across dozens of industries and countries, using a surprisingly simple...

Hackers Exploit Ghost CMS CVE-2026-26980 to Poison 700 Websites With ClickFix Malware

Hackers Exploit Ghost CMS CVE-2026-26980 to Poison 700 Websites With ClickFix Malware

Tushar Subhra Dutta May 26, 2026

A critical SQL injection flaw in Ghost CMS has been weaponized by at least two threat actor...

Hackers Use SEO Poisoning to Impersonate Gemini CLI and Claude Code Installers

Hackers Use SEO Poisoning to Impersonate Gemini CLI and Claude Code Installers

Tushar Subhra Dutta May 26, 2026

Hackers are targeting software developers by creating fake installation pages for two popular AI coding tools, Gemini...

Phishing Services Use RCS and iMessage to Bypass Traditional SMS Security Filters

Phishing Services Use RCS and iMessage to Bypass Traditional SMS Security Filters

Tushar Subhra Dutta May 26, 2026

A new wave of phishing operations is quietly changing the way cybercriminals steal financial data from everyday...

Payload Ransomware Uses ChaCha20 and Curve25519 ECDH to Encrypt Windows Files

Payload Ransomware Uses ChaCha20 and Curve25519 ECDH to Encrypt Windows Files

Tushar Subhra Dutta May 26, 2026

A dangerous new ransomware strain called Payload has been quietly building a global victim list since it...

InvisibleFerret Malware Now Ships as .pyd and .so Files to Evade Script Detection

InvisibleFerret Malware Now Ships as .pyd and .so Files to Evade Script Detection

Tushar Subhra Dutta May 25, 2026

A North Korea-linked hacker group has quietly upgraded one of its most dangerous tools, making it harder...

error: Content is protected !!