Fake Microsoft Teams Downloads Spread ValleyRAT Malware

Hackers are actively distributing a sophisticated ValleyRAT malware variant through fake Microsoft Teams download pages, leveraging social engineering and multi-stage execution techniques to evade detection. The campaign, first observed in mid-April on…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Microsoft’s Retired IE Tool MSHTA Now Being Used in Fileless Malware Attacks

Despite Internet Explorer’s retirement, hackers are abusing the legacy MSHTA utility in stealthy fileless malware attacks targeting Windows users.

·

Cyber Attack, cybersecurity, Fileless, LOLBIN, Malware, Microsoft, MSHTA, Security, vulnerability

¶¶¶¶¶

TamperedChef Malware Hides in Signed Apps to Drop Stealers and RATs

A large-scale malware campaign dubbed “TamperedChef” is leveraging trojanized productivity applications such as PDF editors, calendar tools, and file converters to silently deploy information stealers and remote access trojans (RATs), according to rece…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

BadIIS Malware Hijacks IIS Servers to Redirect Users to Illicit Sites

A new variant of the BadIIS malware that hijacks Microsoft IIS web servers to redirect users to illicit websites, highlighting an evolving malware-as-a-service (MaaS) ecosystem operated by Chinese-speaking cybercrime groups. The newly analyzed variant …

·

cyber security, Cyber Security News, IIS, Malware

¶¶¶¶¶

New GhostTree Attack Causes EDR Tools to Hang, Leaving Files Unscanned

A newly disclosed attack technique dubbed “GhostTree” is raising concerns among defenders after researchers demonstrated how it can disrupt endpoint detection and response (EDR) tools and bypass file scanning mechanisms on Windows systems. The techniqu…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

GraphWorm Malware Abuses Microsoft OneDrive for Stealthy C2 Operations

A new activity from Webworm, a China-aligned advanced persistent threat (APT) group, revealing a significant evolution in its cyber espionage toolkit during 2025. The group, first publicly documented in 2022, has shifted its targeting from primarily As…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Fox Tempest Linked to Malware-Signing Service Abusing Microsoft Artifact Signing

Fox Tempest, a financially motivated threat actor, has been linked to a large-scale malware-signing-as-a-service (MSaaS) operation that abused Microsoft’s Artefact Signing platform to enable cybercriminals to distribute malicious software that appeared…

·

cyber security, Cyber Security News, Malware, Microsoft, vulnerability

¶¶¶¶¶

Fake Word Phishing Reveals Enterprise Blind Spot in Trusted Remote Access Tools

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.

·

ANY.RUN, cybersecurity, Malware, Microsoft Word, Phishing, Phishing Scam, Security, SOC, Threat Intelligence

¶¶¶¶¶

Fake Tax Assessment Pages Spread Windows Malware

Hackers are actively targeting Windows users with fake Indian Income Tax assessment pages in a campaign tracked as TAX#TRIDENT. The campaign begins with fraudulent tax assessment or penalty pages designed to create urgency. Victims are prompted to down…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Banana RAT Malware in Fake Invoices Hits Customers at 16 Brazilian Banks

Banana RAT malware hidden in fake invoices and security update screens targets customers at 16 Brazilian banks stealing data with QR fraud.

·

Banana RAT, Brazil, Cyber Crime, cybersecurity, Fraud, Malware, SCAM, Scams and Fraud, Security

¶¶¶¶¶

1010.cx

1010.cx

Category: Malware