Category of intelligence

Malware

News about viruses, Ransomware, Trojans and other malicious software

Stories published: 540 Showing up 9 articles per page

From the click to the kernel: the maldumping campaign that disables EDR with signed drivers

Malware

March 24, 2026 6 min de lectura 164

From the click to the kernel: the maldumping campaign that disables EDR with signed drivers

A massive maldumping campaign that was detected in early 2026 took advantage of the search for tax documents to bring victims in the United States to malicious installers who deli…

When the dependencies betray you: the npm campaign that steals credentials and cryptomoneda coins

Malware

March 24, 2026 5 min de lectura 181

When the dependencies betray you: the npm campaign that steals credentials and cryptomoneda coins

Today we see how software security is hit with social engineering and organized crime economy: researchers have discovered a burst of malicious packages published in the npm recor…

Yanluowang's IAB is condemned and the hidden face of the Ransomware is revealed

Malware

March 24, 2026 4 min de lectura 123

Yanluowang's IAB is condemned and the hidden face of the Ransomware is revealed

The story of Aleksey Olegovich Volkov - known on the network as "chubaka.kor" nets "- is a clear reminder that behind many Ransomware attacks there is not always a single" lone ha…

The initial access broker that opened the door to the ansomware is condemned in the US. United States.

Malware

March 24, 2026 4 min de lectura 142

The initial access broker that opened the door to the ansomware is condemned in the US. United States.

The recent ruling against a young Russian citizen marks another page in the long fight between justice and networks that feed the ransomware. Aleksei Olegovich Volkov has been sen…

e-security alert in Mazda after unauthorized access that exposes data from employees and business partners

Malware

March 23, 2026 4 min de lectura 146

e-security alert in Mazda after unauthorized access that exposes data from employees and business partners

Japanese car Mazda confirmed that, at the end of December, it detected unauthorized access to one of its internal systems that revealed information from employees and business par…

TeamPCP CanisterWorm: selective destruction and persistence in Kubernetes environments

Malware

March 23, 2026 5 min de lectura 133

TeamPCP CanisterWorm: selective destruction and persistence in Kubernetes environments

Days ago, security researchers have unveiled a campaign that mixes lateral motion techniques in cloud-native environments with a deliberately destructive payload oriented towards …

Malware

March 23, 2026 6 min de lectura 126

StoatWaffle and threat in VS Code: opening a project could activate malware supply chain

In recent months a cyber-threat campaign has grown that combines very polished social engineering with unconventional techniques for developers: delivering malware through malicio…

Trivy under the eye of the hurricane: attack on the supply chain exposes credentials and shaking CI / CD

Malware

March 23, 2026 5 min de lectura 113

Trivy under the eye of the hurricane: attack on the supply chain exposes credentials and shaking CI / CD

The software supply chain again tested one of its most dangerous cracks: Trivy, the Aqua Security vulnerability scanner known and massively used by developers and security equipme…

Telegram as a command and control weapon: FBI alert reveals Iranian cyber attacks and messaging risk

Malware

March 23, 2026 5 min de lectura 116

Telegram as a command and control weapon: FBI alert reveals Iranian cyber attacks and messaging risk

The recent FBI alert on the use of Telegram as a command and control infrastructure by Iranian actors again shows something that cyber security experts have been warning for years…

Explore RadarBytes

Malware

From the click to the kernel: the maldumping campaign that disables EDR with signed drivers

When the dependencies betray you: the npm campaign that steals credentials and cryptomoneda coins

Yanluowang's IAB is condemned and the hidden face of the Ransomware is revealed

The initial access broker that opened the door to the ansomware is condemned in the US. United States.

e-security alert in Mazda after unauthorized access that exposes data from employees and business partners

TeamPCP CanisterWorm: selective destruction and persistence in Kubernetes environments

StoatWaffle and threat in VS Code: opening a project could activate malware supply chain

Trivy under the eye of the hurricane: attack on the supply chain exposes credentials and shaking CI / CD

Telegram as a command and control weapon: FBI alert reveals Iranian cyber attacks and messaging risk

Disable your ad blocker

Malware

Manage your cookies