Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Malware

20 articles

The Hacker News Malware WordPress Jun 22

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack

Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with the official releas...

T1195

The Hacker News →

GBHackers Malware Microsoft Jun 22

Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader

A malicious npm package, postcss-minify-selector-parser, has been discovered masquerading as a benign PostCSS utility and delivering a multi-stage Windows re...

GBHackers →

GBHackers Malware Jun 22

AryStinger Botnet Uses Intranet Scanning and Traffic Tunneling to Hide Attacker Activity

A newly analyzed botnet family, AryStinger, weaponizes long‑neglected routers and NAS appliances to build a stealthy reconnaissance and relay infrastructure ...

T1592

GBHackers →

The Hacker News Malware Intel Jun 22

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices

Canada's spy service got a judge's permission to reach into infected servers, home routers, and IoT gear sitting on Canadian soil and neutralize two foreign-...

The Hacker News →

Security Affairs Malware Amazon Linux Jun 22

4,300+ Outdated Routers Hijacked in Stealthy Spy Infrastructure by AryStinger malware

AryStinger hijacks outdated routers via old flaws, turning 4,300+ devices into a stealth network for reconnaissance and intrusion support. On March 12, 2026,...

T1592 1 IOC

Security Affairs →

The Hacker News Malware Jun 22

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

A new malware family is turning forgotten home routers into a distributed reconnaissance and proxy network, not the DDoS botnet these devices usually end up ...

T1592

The Hacker News →

BleepingComputer Malware Jun 21

AryStinger botnet infected thousands of D-Link routers worldwide

A previously undocumented malware botnet named AryStinger has compromised more than 4,000 outdated routers to turn them into proxies for malicious traffic. [.

BleepingComputer →

GBHackers Malware Google Jun 20

Vidar Infostealer Bypasses Google Chrome’s ABE Encryption via APC Injection

A sophisticated evasion technique developed by Vidar infostealer operators successfully bypasses Google Chrome’s Application-Bound Encryption (ABE). Introduc...

GBHackers →

SecurityWeek Malware Google Apple Amazon CrowdStrike Jun 19

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, u...

SecurityWeek →

GBHackers Malware Jun 19

State Digital Surveillance Puts Foreign Travelers and Businesses at Risk Across 31 Countries

A new state-surveillance assessment finds that foreign travelers and business staff face high or very high digital risk in 31 countries, where governments in...

GBHackers →

Help Net Security Malware Jun 19

Asia-Pacific scam networks generate nearly $40 billion a year

Cybercrime is taking a larger share of criminal activity in Asia and the Pacific. More than half of surveyed jurisdictions reported that cybercrime accounts ...

Help Net Security →

Elastic Security Labs Malware Google Jun 19

Lost in relocation: analysis of a new loader distributing CASTLESTEALER

Find out how a new obfuscated loader evades static detection using .reloc section abuse, five anti-VM/language checks and MBA obfuscation to deliver infostea...

T1027

Elastic Security Labs →

Cyberscoop Malware Jun 18

Authorities disrupt Evil Corp’s SocGholish botnet

Cybersecurity firms, researchers and officials took down 106 servers and remediated nearly 15,000 sites that were infected with the malware. The post Authori...

Cyberscoop →

SC Media Malware WordPress Jun 18

Law enforcement disrupts SocGholish botnet and Evil Corp servers

Authorities from the Netherlands, Canada, the United States, and Germany removed the SocGholish malware and backdoors from 14,971 compromised WordPress websi...

SC Media →

Krebs on Security Malware Google Jun 18

‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm

For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertisin...

Krebs on Security →

SecurityWeek Malware Jun 18

Majority of Internet-Accessible REDCap Servers Outdated

These servers are regularly targeted by China-linked UNC6508 for initial access and backdoor deployment. The post Majority of Internet-Accessible REDCap Serv...

SecurityWeek →

BleepingComputer Malware Microsoft Jun 18

USB worm spreads crypto-stealing malware via Windows shortcut files

Threat actors targeting cryptocurrency wallets have been distributing clipboard-stealing malware with self-spreading capabilities and using the Tor network t...

BleepingComputer →

SC Media Malware Jun 18

Attacker establishes persistent access to French business using OpenSSH and Tailscale

The attacker utilized a multi-stage in-memory malware chain, including a VBScript stager, a PowerShell loader, and Havoc's Demon agent, to gain initial access.

SC Media →

BleepingComputer Malware WordPress Jun 18

Police cleans nearly 15,000 malware-infected sites linked to Evil Corp

International law enforcement agencies cleaned nearly 15,000 malware-infected WordPress websites and took down more than 100 servers linked to the SocGholish...

BleepingComputer →

Help Net Security Malware Apple Jun 18

Malware attacks strip Roblox developers of entire games

Hackers who once focused on stealing valuable Roblox items are now taking over entire games. Although Roblox operates the service, users can create and publi...

Help Net Security →

«Previous page 1 ... 3 4 5 6 7 ... 20 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA