Weaponized JPEG file Drops Trojanized ScreenConnect Malware

Hackers are abusing a weaponized JPEG file to quietly install a trojanized version of the ConnectWise ScreenConnect remote‑access tool on Windows systems, enabling full surveillance, credential theft, and long‑term control over compromised networks. Th…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

macOS Malware Abuses Google Ads and Claude Shared Chats to Deliver Payloads

Threat actors are deploying a sophisticated malvertising campaign targeting macOS users by exploiting Google Ads and legitimate Anthropic Claude shared chats. Security researcher Berk Albayrak uncovered this novel attack chain on May 10, which distribu…

·

cyber security, Cyber Security News, Google, macOS, Malware

¶¶¶¶¶

ODINI Malware Uses CPU Magnetic Signals to Exfiltrate Data from Air-Gapped Systems

Air-gapped systems and Faraday cages have long represented the gold standard for protecting critical infrastructure and sensitive military networks. However, a groundbreaking threat known as ODINI demonstrates that even these extreme isolation measures…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Hackers Trick DigiCert Into Issuing Certificates Used to Sign Malware

DigiCert revokes 60 code signing certificates after hackers used a malicious support chat attachment to sign the Zhong Stealer malware.

·

Certificates, Cyber Attack, cybersecurity, Data Breach, Data Breaches, DigiCert, Malware, Mozilla, Security

¶¶¶¶¶

Hackers Hijack JDownloader Site to Deliver Malware Through Installers

JDownloader confirms a security breach where hackers manipulated official download links to distribute malicious files between 6 and 7 May 2026.

·

backdoor, cybersecurity, Fraud, JDownloader, Malware, SCAM, Scams and Fraud, Security

¶¶¶¶¶

TCLBANKER Malware Leverages WhatsApp and Outlook Worm Features in Active Attacks

A sophisticated Brazilian banking trojan named TCLBANKER, deployed through a trojanized Logitech installer and capable of hijacking victims’ WhatsApp and Outlook accounts to spread itself to new targets. The campaign, tracked as REF3076, delivers…

·

cyber security, Cyber Security News, Malware, Outlook, WhatsApp

¶¶¶¶¶

Vidar Infostealer Campaign Steals Passwords, Cookies, Crypto Wallets, and Device Data

A highly evasive multi-stage malware campaign deploying the Vidar Infostealer. First discovered in late 2018 and built on the Arkei stealer source code, Vidar is notorious for aggressively harvesting user credentials, browser session cookies, cryptocur…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Fake macOS Troubleshooting Sites Used to Steal iCloud Data in ClickFix Scam

Microsoft researchers warn of a new ClickFix campaign targeting macOS with fake guides on Medium and Craft to deploy AMOS and SHub Stealer via Terminal commands.

·

AMOS, ClickFix, Cyber Attack, cybersecurity, ICLOUD, macOS, MacSync, Malware, Microsoft, SCAM, Scams and Fraud, Security, SHub Stealer

¶¶¶¶¶

ZiChatBot Malware Abuses Zulip APIs for Stealthy C2 Operations

A new cross‑platform malware family, dubbed ZiChatBot, that abuses the trusted Python Package Index (PyPI) ecosystem and the Zulip team chat platform to run a stealthy command‑and‑control (C2) channel. During routine threat hunting, analysts observed a…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

New Infostealer Campaign Abuses GitHub Releases to Hide Malware Payloads

A new cyberespionage campaign that abuses GitHub Releases and a PE-less Python implant to steal data from targeted Windows systems quietly. The operation combines social engineering, trusted cloud infrastructure, and multi-stage obfuscation to maintain…

·

cyber security, Cyber Security News, GitHub, Malware

¶¶¶¶¶

1010.cx

1010.cx

Category: Malware