资讯

The Hacker News1 天

TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations

CastleRAT and CastleLoader, active since March 2025, spread malware via phishing and GitHub repos, enabling data theft.
WeLiveSecurity2 天

GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes

ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS ...
The Hacker News2 天

GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module

GhostRedirector compromised 65 Windows servers since Aug 2024 using Rungan and Gamshen malware, driving SEO fraud.

Vidar infostealer gains traction among cybercriminals as ease of use drives adoption

Vidar is powered by a PowerShell script that can steal data from a remote server through the use of stealth techniques such ...
Security Boulevard1 天

Response to CISA Advisory (AA25-239A): Countering Chinese State-Sponsored Actors Compromise ...

AttackIQ has updated the assessment template that emulates the various post-compromise Tactics, Techniques, and Procedures ...
Samaa TV5 天

WhatsApp warns users of new targeted attack attempt

WhatsApp flaw exploited in targeted spyware attacks, Microsoft mandates Azure MFA, Nissan hit by Qilin ransomware, Baltimore loses $1.5M in fraud, and FreePBX CVSS 10 flaw under attack.