Reaper macOS Infostealer Abuses Script Editor to Steal Crypto and Passwords

Threat actors are deploying an updated SHub Stealer variant named Reaper that exploits the native macOS Script Editor to bypass OS-level protections and compromise cryptocurrency assets.

·

ClickFix, Crypto, Infostealer, macOS, Malware, Password, Reaper, Script Editor, Security, SHub Stealer, WeChat

¶¶¶¶¶

New Magecart Attack Abuses Stripe as Malware C2

A novel Magecart campaign that weaponizes legitimate cloud services to evade detection: attackers are storing a JavaScript skimmer inside Stripe customer metadata and delivering it to victim checkouts via Google Tag Manager. The combination makes Strip…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Chinese APT VerdantBamboo Targets Appliances with BRICKSTORM Malware

BRICKSTORM is a modular remote access trojan (RAT) originally seen in Golang and later in Rust. It uses a wssoft library with pluggable “tasks” for shell commands, a Socks5 proxy, and a simple web server for file listing. An incident response engagemen…

·

APT, cyber security, Cyber Security News, Malware

¶¶¶¶¶

Fake Ghidra, dnSpy & SpiderFoot Sites Used to Spread Malware

Hackers are abusing search results and professional-looking fake download portals to distribute malware by impersonating popular security tools like Ghidra, dnSpy, and SpiderFoot. These sites capture users’ first click on a “Download” button and silent…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Lazarus Group Uses npm Brandjacking Campaign to Target Developers

North Korean Lazarus Group targets npm developers with brandjacking packages that mimic trusted tools, drop malware and put credentials at risk.

·

Brandjacking, Cyber Attack, Cyber Crime, Cyber-Attacks, cybersecurity, Lazarus, Malware, Security

¶¶¶¶¶

Phishing Attacks Pivot to Infostealer Malware Over Fake Login Pages

Cybercriminal tactics are evolving as phishing campaigns increasingly shift away from fake login pages toward infostealer malware designed to quietly harvest sensitive data from infected systems. While traditional credential-harvesting pages remain in …

·

cyber security, Cyber Security News, Malware, Phishing

¶¶¶¶¶

JINX-0164 Targets Crypto Firms With macOS Malware

A series of targeted intrusions against cryptocurrency organizations, attributing the activity to a newly identified threat actor tracked as JINX-0164. The campaign combines advanced social engineering, custom macOS malware, and deep access into develo…

·

cyber security, Cyber Security News, macOS, Malware

¶¶¶¶¶

China-Linked TA4922 Hackers Target UK, Europe With New SilentRunLoader Malware

Proofpoint says TA4922, a suspected China aligned cybercrime group, is targeting UK and European organisations with tax, payroll and benefits themed malware campaigns.

·

Atlas RAT, China, Cyber Attack, Cyber Crime, Cyber-Attacks, cybersecurity, DLL, Malware, Phishing, Proofpoint, RomulusLoader, Security, SilentRunLoader, TA4922, ValleyRAT, Winos4.0

¶¶¶¶¶

Hackers Spread WeedHack Malware via YouTube and SEO Poisoning

Hackers are increasingly abusing trusted platforms like YouTube and search engines to distribute malware, and a newly uncovered campaign targeting Minecraft players highlights how effective this tactic has become. Minecraft, originally released in 2011…

·

cyber security, Cyber Security News, Malware, Youtube

¶¶¶¶¶

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads.

·

AI, Anthropic, Artificial Intelligence, ChatGPT, Claude, ClaudeBleed, Cyber Attack, cybersecurity, Malware, SCAM, Security, vulnerability

¶¶¶¶¶

1010.cx

1010.cx

Category: Malware