FBI says Iranian hackers are using Telegram to steal data in malware attacks

Hackers working for Iran’s government are using Telegram in hacking operations that use malware to target dissidents, ...

Stryker Hackers Allegedly Wiped Devices Using Microsoft Intune

The Handala group claimed responsibility for the attack.
CPO Magazine

Infostealer Using New “DarkSword” iOS Exploit Chain Deployed by Russian Threat Actors

DarkSword packs both a complete iOS exploit chain and infostealer into one package. The chain initiates when Safari opens a ...

Trivy supply-chain attack spreads to Docker, GitHub repos

The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images ...
The Hacker News

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

Microsoft warns tax-season phishing hit 29,000 users via IRS lures, enabling credential theft and RMM-based access.

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows ...

TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran.

McAfee uncovers malware campaign using AI-generated code to target game mods and apps

A huge amount of malware is being distributed, and a lot of it seems to be 'vibe coded' ...
Dark Reading

Trivy Supply Chain Attack Targets CI/CD Secrets

A threat actor used the open source security tool to breach CI/CD workflows and steal cloud credentials, SSH keys, and other ...
Dark Reading

Attackers Hide Infostealer in Copyright Infringement Notices

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...
SecurityWeek

‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload

BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.
The Financial Express

NPCI reponds to ‘Digital Lutera’ malware controversy, says UPI safeguards keep your payments safe

NPCI has responded to a CloudSEK report commenting on how fraudsters bypass security protections in UPI apps. Here's all you ...