Malware Analysis

12 articles in this category

AI NewsCybersecurityMalware Analysis

Rise of the Digital Parasite: Stealthy Cyberattacks on the Increase

Ransomware declines by 38% as attackers shift towards stealthy, long-term access strategies, according to the Picus Red Report 2026.

Feb 10, 2026

AI NewsCybersecurityMalware Analysis

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

DEAD#VAX campaign delivers AsyncRAT via IPFS-hosted VHD phishing files with a stealthy, fileless approach, evading traditional detection mechanisms.

Feb 4, 2026

AI NewsCybersecurityMalware Analysis

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Cisco Talos links China-based UAT-8099 to IIS server attacks using BadIIS malware for regional SEO fraud, targeting Thailand and Vietnam with over 5 countries affected.

Jan 30, 2026

AI NewsCybersecurityMalware Analysis

Android Malware FvncBot, SeedSnatcher, and ClayRat Gain Stronger Data Theft Features

Researchers reveal advanced Android malware FvncBot, SeedSnatcher, and ClayRat with enhanced data theft capabilities, targeting banking and crypto users.

Dec 8, 2025

AI NewsCyber SecurityMalware Analysis

Google Discovers PROMPTFLUX Malware Leveraging Gemini AI for Evasion

Google identifies PROMPTFLUX, a VB Script malware using Gemini AI to rewrite its code hourly for evasion, highlighting rising AI-driven cyber threats and misuse of large language models.

Nov 5, 2025

AI NewsCyber SecurityMalware Analysis

Microsoft Discovers 'SesameOp' Backdoor Leveraging OpenAI API for Stealthy Cyber Operations

Microsoft reveals 'SesameOp,' a sophisticated backdoor using OpenAI's API as a covert command-and-control channel for prolonged espionage activities.

Nov 4, 2025

AI NewsCybersecurityMalware Analysis

Malicious VSX Extension SleepyDuck Leverages Ethereum for Persistent Command Server Control

Researchers uncover SleepyDuck RAT hidden in a VSX extension, using Ethereum contracts to dynamically update its command-and-control server, highlighting risks in open-source software ecosystems.

Nov 3, 2025

AI NewsCyber SecurityNetwork Security

ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability

The Australian Signals Directorate (ASD) alerts about BADCANDY malware re-infecting unpatched Cisco IOS XE devices via CVE-2023-20198, emphasizing critical security measures.

Nov 1, 2025

AI NewsCyber SecurityMalware Analysis

Konni Hackers Exploit Google Find Hub for Remote Data-Wiping and Multi-Group Cyber Threats

North Korea-linked Konni hackers weaponize Google's Find Hub for remote device wiping, while Lazarus and Kimsuky groups deploy advanced malware in targeted campaigns.

Nov 1, 2025

AI NewsCyber SecurityMalware Analysis

Nation-State Hackers Deploy Airstalk Malware in Supply Chain Attack Targeting Enterprise Browsers

Airstalk malware exploits AirWatch APIs for covert C2 communication, targeting enterprise browsers in a suspected supply chain attack linked to a nation-state actor.

Oct 31, 2025

AI NewsCyber SecurityMalware Analysis

Chrome Zero-Day Exploit Linked to Memento Labs' LeetAgent Spyware Campaign

A Chrome zero-day vulnerability (CVE-2025-2783) was exploited to deploy Memento Labs' LeetAgent spyware, targeting Russian organizations in a campaign dubbed Operation ForumTroll.

Oct 28, 2025

AI NewsCyber SecurityMalware Analysis

New Android Trojan 'Herodotus' Evades Anti-Fraud Systems with Human-Like Typing Behavior

Herodotus, a new Android banking trojan, mimics human behavior to bypass biometrics and steal banking data, targeting users in multiple countries.

Oct 28, 2025