Lazarus Group's Latest: Brandjacking Campaign on npm - 惯性聚合

推荐订阅源

Schneier on Security

博客园 - 【当耐特】

博客园 - 三生石上(FineUI控件)

Java Code Geeks

SegmentFault 最新的问题

Recent Announcements

罗磊的独立博客

博客园 - 聂微东

WordPress大学

Google DeepMind News

Application and Cybersecurity Blog

阮一峰的网络日志

Security Latest

MIT News - Artificial intelligence

Threat Research - Cisco Blogs

Security Archives - TechRepublic

The Hacker News

Security Affairs

Recorded Future

Palo Alto Networks Blog

Proofpoint News Feed

Cybersecurity and Infrastructure Security Agency CISA

Exploit-DB.com RSS Feed

About on SuperTechFans

Simon Willison's Weblog

The Blog of Author Tim Ferriss

博客园 - 叶小钗

www.infosecurity-magazine.com

Security @ Cisco Blogs

The Register - Security

LINUX DO - 热门话题

博客园 - 司徒正美

人人都是产品经理

Apple Machine Learning Research

Y Combinator Blog

大猫的无限游戏

Malpedia Library (Latest)

Remus: Unmasking The 64-bit Variant of the Infamous Lumma Stealer North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack ProxyBox: Socks5Systemz Lives On All thriller, no (malware) filler APT28 exploit routers to enable DNS hijacking operations Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure MacOS hacking part 13: sysinfo stealer via VirusTotal API. Simple C example Deep Technical Analysis Of Payload Ransomware Targeting ESXi Environment Active Magecart Campaign Targets Spain, Steals Card Data via Hijacked eStores for Bank Fraud A Multi-Vector DDoS Botnet Targeting Organizations Worldwide Detect SnappyClient C&C Traffic Using PacketSmith + Yara-X Detection Module Russian Intelligence Services Target Commercial Messaging Application Accounts Government of Iran Cyber Actors Deploy Telegram C2 to Push Malware to Identified Targets PAM module injection. Simple C example cron jobs. Simple C example RegPhantom Backdoor Threat Analysis Re-opened applications. Simple C example Google Cloud Storage Phishing Deploying Remcos RAT a new Android RAT turning infected devices into potential residential proxy nodes MUSTANG PANDA × PLUGX - From deceptive LNK to multi-transport backdoor caffeinate LOLBin. Simple C example How UNC6692 Employed Social Engineering to Deploy a Custom Malware Suite The Group Theory Inside Bedep's DGA Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories WannaCry Malware Analysis - How YOU Could have Saved the World How 109 Fake GitHub Repositories Delivered SmartLoader and StealC Mobile malware development trick 3. CPU info logger: anti-VM and anti-sandbox. Simple Android (Kotlin) example. We Dumped a Live Kimsuky C2 and Recovered Every Stage of the Kill Chain: CHM Dropper, VBScript Stager, PowerShell Keylogger Quasar Linux (QLNX) – A Silent Foothold in the Supply Chain: Inside a Full-Featured Linux RAT With Rootkit, PAM Backdoor, Credential Harvesting Capabilities [KRYBIT] – Ransomware Victim: Hacked 0APT Pro-Iranian Actor Ababil of Minab Claims Cyberattack on LA Metro (LACMTA) Lazarus Group Uses Git Hooks To Hide Malware Mystery ShadowBrokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet Tweet about SpankRat Tweet about HanGhost Tweet about GeckoStealer Tweet about VoltStealer Tweet about LedgerChecker Stealer NotPetya Malware Analysis - Bye, boot partition. I'll miss you North Korea's abuse of Cloudflare Workers and Pages Hunting Lazarus Part VII: The Server That Was Not Just FTP Weekly Detected Threats - April 21 Where Have All the Complex Windows Malware and Their Analyses Gone? Multi-stage malware delivery campaign using SEO poisoning and serverless infrastructure Analysis on Malware that attacks Israel's Water treatment facilities LATAM Under Siege: Agent Tesla’s 18-Month Credential Theft Campaign Against Chilean Enterprises New TrickMo Variant: Device Take Over malware targeting Banking, Fintech, Wallet & Auth apps New Phishing Campaign Targets US with Credential Theft: What CISOs Need to Know osascript LOLBin. Simple C example Zynap’s Next-Gen Sandbox Redefines Automatic Malware Analysis X.com - Gen Threat Labs Tweet about Lalia Ransomware Darcula aka. "Magic Cat" Fake installer ships Rust Infostealer Trojanized MS Teams Installers Deliver Multi-Stage Loader and Backdoor MustangPanda New Backdoor LotusLite Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware Fake Microsoft Teams download sites are being used to deliver ValleyRAT via DLL sideloading MUSTANG PANDA x PLUGX - Analysis of the January 2026 sample: a multi-layer execution chain Pivoting on a malspam infrastructure delivering JS malware backed by bulletproof networks Inside Red Lamassu’s JFMBackdoor Fresh mischief and digital shenanigans Anatomy of a nation-state botnet THUS SPOKE…THE GENTLEMEN Industrialized Smishing Infrastructure Targeting the UAE and Singapore Transportation, Government, and Logistics Sectors TCLBANKER: Brazilian Banking Trojan Spreading via WhatsApp and Outlook Detecting Nimbus Manticore and their sideloading infection chains Famous Chollima Targets PHP Developers Through Compromised Packagist Package Malware shellcode delivery via signal Fast and Furious – Nimbus Manticore Operations During the Iranian Conflict Inside the Cross-Platform Propagation of a New Gafgyt Variant C0XMO Believe me I am MustangPanda UNK_DeadDrop Phishing Campaign Targets Developers to Steal Cryptocurrency Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent Miasma Worm Campaign Spreads with New PyPI Wave The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs Russian spy agency says foreign spies turned officials' smartphones into surveillance devices Evolutions from 2024 to 2026 DriveSurge Turns Trusted Websites Into ClickFix Malware Traps A Russia-nexus group leveraging AI across state-aligned operations A Russia-nexus group leveraging AI across state-aligned operations Sapphire Sleet Targets macOS in Multi-Stage Intrusion Campaign The GHOST STADIUM Score: Billions At Stake At The World’s Largest Football Tournament A New Threat Actor Targeting the Cryptocurrency Industry's Software Development Infrastructure

Lazarus Group's Latest: Brandjacking Campaign on npm

Fraunhofer FKIE · 2026-06-10 · via Malpedia Library (Latest)

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。