Threats

Hackers Backdoor Telnyx Python SDK on PyPI to Steal Credentials Across Windows, macOS, and Linux

Hackers Backdoor Telnyx Python SDK on PyPI to Steal Credentials Across Windows, macOS, and Linux

Tushar Subhra Dutta April 1, 2026

A threat actor group known as TeamPCP has been caught backdooring the Telnyx Python SDK on PyPI...

New npm Supply Chain Attack Uses undicy-http to Deploy Screen-Streaming RAT and Browser Injector

New npm Supply Chain Attack Uses undicy-http to Deploy Screen-Streaming RAT and Browser Injector

Tushar Subhra Dutta April 1, 2026

A malicious npm package named undicy-http has surfaced inside the Node.js developer ecosystem, quietly compromising machines of developers who...

XLoader Malware Upgrades Obfuscation Tactics and Hides C2 Traffic Behind Decoy Servers

XLoader Malware Upgrades Obfuscation Tactics and Hides C2 Traffic Behind Decoy Servers

Tushar Subhra Dutta April 1, 2026

A well-known information-stealing malware called XLoader has received significant upgrades in its latest versions, making it considerably...

Hackers Weaponize Legitimate Windows Tools to Disable Antivirus Before Ransomware Attacks

Hackers Weaponize Legitimate Windows Tools to Disable Antivirus Before Ransomware Attacks

Tushar Subhra Dutta March 31, 2026

Ransomware attacks have gone far beyond simple malicious code. Today, attackers operate with the precision of a...

Hackers Deploy Telegram-Based ResokerRAT With Screenshot and Persistence Features Resoker.exe%20(Source%20-%20K7%20Security%20Labs).webp

Resoker.exe%20(Source%20-%20K7%20Security%20Labs).webp

Hackers Deploy Telegram-Based ResokerRAT With Screenshot and Persistence Features

Tushar Subhra Dutta March 31, 2026

A new remote access trojan known as ResokerRAT has come to light, using Telegram’s bot API as...

EvilTokens Emerges as New Phishing-as-a-Service Platform for Microsoft Account Takeover

EvilTokens Emerges as New Phishing-as-a-Service Platform for Microsoft Account Takeover

Tushar Subhra Dutta March 31, 2026

A new and dangerous phishing toolkit has entered the cybercrime scene. In early 2026, a Phishing-as-a-Service platform...

Cybercriminals Abuse IRS and Tax Filing Lures to Push Malware in New Campaigns

Cybercriminals Abuse IRS and Tax Filing Lures to Push Malware in New Campaigns

Tushar Subhra Dutta March 31, 2026

Tax season brings a reliable wave of phishing attacks, but 2026 has already shown a bigger and...

New DeepLoad Malware Uses ClickFix and AI-Generated Evasion to Breach Enterprise Networks

New DeepLoad Malware Uses ClickFix and AI-Generated Evasion to Breach Enterprise Networks

Tushar Subhra Dutta March 31, 2026

A newly discovered malware named DeepLoad is targeting enterprise environments, turning a single user action into persistent,...

Hackers Deploy RoadK1ll Pivoting Malware to Turn Compromised Hosts Into Network Relays

Hackers Deploy RoadK1ll Pivoting Malware to Turn Compromised Hosts Into Network Relays

Tushar Subhra Dutta March 31, 2026

A new piece of malware called RoadK1ll has been found silently converting compromised machines into controllable network...

Exposed Server Reveals TheGentlemen Ransomware Toolkit, Victim Credentials, and Ngrok Tokens

Exposed Server Reveals TheGentlemen Ransomware Toolkit, Victim Credentials, and Ngrok Tokens

Tushar Subhra Dutta March 30, 2026

A misconfigured server hosted on a Russian bulletproof hosting provider has exposed the complete operational toolkit of...

error: Content is protected !!