Tagged: malware

October 18, 2025 @ 10:28 am By Tony Zerucha  |  

Sonatype, a provider of AI-centric DevSecOps, this week released the Open Source Malware Index, Q3 2025, which analyzed 34,319 open source malware packages discovered by Sonatype across major open source registries, including npm, PyPI, Hugging Face, and more. This quarter’s count brings the total number of… Read More

October 16, 2025 @ 7:52 pm By Omar Faridi  |  

Earlier this year, Kaspersky’s Global Research and Analysis Team (GReAT) identified a campaign by the ‘Mysterious Elephant’ APT. The group mainly targets government entities as well as foreign affairs organizations across the APAC area, with a particular focus on Pakistan, Bangladesh, Afghanistan, Nepal, Sri Lanka… Read More

September 7, 2025 @ 3:21 pm By Omar Faridi  |  

Cybercriminals are leveraging the complexity of blockchain technology to obscure malicious activities, with a new tactic involving the concealment of malware within Ethereum smart contracts, according to a recent report by cybersecurity firm ReversingLabs. This sophisticated approach allows hackers to disguise harmful traffic as routine… Read More

August 21, 2025 @ 12:52 am By Omar Faridi  |  

In the landscape of cybersecurity and technology, Kaspersky’s recent reports highlight critical developments in cyber threats and the growing role of artificial intelligence in everyday applications. From sophisticated malware campaigns targeting financial institutions to the resurgence of a notorious backdoor and the underutilized potential of… Read More

July 12, 2025 @ 8:08 am By Tony Zerucha  |  

Sonatype, a software supply chain security company, this week released the Q2 2025 edition of its Open Source Malware Index, uncovering 16,279 malicious open source packages across major ecosystems including npm and PyPI. This quarter’s count brings the total number of open source malware packages Sonatype has discovered… Read More

June 23, 2025 @ 5:06 pm By Omar Faridi  |  

Kaspersky researchers have discovered a new Trojan spy called SparkKitty which targets smartphones on iOS and Android. It sends images from an infected phone and information “about the device to the attackers.” This malware was embedded in apps related “to crypto and gambling, as well… Read More

June 9, 2025 @ 2:49 pm By Omar Faridi  |  

From April 1, 2024 to March 31, 2025, Kaspersky detected over 19 million attempts to download malicious or unwanted files disguised as popular Gen Z games. With GTA, Minecraft and Call of Duty among the most exploited, it’s clear that cybercriminals “are actively following gaming… Read More

June 1, 2025 @ 5:20 pm By Omar Faridi  |  

Kaspersky Global Research and Analysis Team (GReAT) discovered a new version of the Zanubis mobile banking trojan targeting users in Peru. When Zanubis originally emerged in 2022, it “mimicked PDF readers or Peru government organizations’ apps, and now in 2025 it disguises itself as two… Read More

May 26, 2025 @ 9:48 am By Omar Faridi  |  

A major cybersecurity breach has recently been unveiled, revealing a staggering 184 million login credentials, including emails and passwords, likely harvested through infostealer malware. Discovered by cybersecurity researcher Jeremiah Fowler, the unprotected 47GB database was found on a misconfigured cloud server, accessible to anyone without… Read More

May 9, 2025 @ 10:13 am By Omar Faridi  |  

Anti-Ransomware Day was established on May 12 in 2020 by INTERPOL in collaboration with Kaspersky to commemorate the anniversary of the infamous WannaCry ransomware attack that occurred on May 12, 2017. The purpose of Anti-Ransomware Day is to raise global awareness about the threats “posed… Read More

April 28, 2025 @ 6:03 pm By Omar Faridi  |  

Kaspersky’s GReAT team has uncovered a new Lazarus campaign, combining a watering hole attack with the “exploitation of vulnerabilities in third-party software to target organizations in South Korea.” During the research, company experts have also “discovered a zero-day vulnerability in the widely used South Korean… Read More

March 28, 2025 @ 9:25 am By Omar Faridi  |  

Kaspersky has identified and helped patch a sophisticated zero-day vulnerability in Google Chrome (CVE-2025-2783) that allowed attackers to bypass the browser’s sandbox protection system. The exploit, discovered by Kaspersky’s Global Research and Analysis Team (GReAT), required no user interaction “beyond clicking a malicious link and… Read More

March 5, 2025 @ 11:01 pm By Omar Faridi  |  

Kaspersky Digital Footprint Intelligence estimates that 2.3 million bank cards were leaked on the dark web, based on an “analysis of data-stealing malware log files from 2023-2024.” On average, every 14th infostealer infection results in stolen credit card information, with nearly “26 million devices compromised… Read More

March 3, 2025 @ 9:46 am By Omar Faridi  |  

According to the latest Kaspersky Managed Detection and Response (MDR) analyst report, advanced persistent threats (APTs) have been detected in 25% of companies, accounting for over 43% of all high-severity incidents. This marks a staggering 74% increase compared to 2023. The Managed Detection and Response… Read More

February 27, 2025 @ 10:04 pm By Omar Faridi  |  

OKX and SlowMist noted in a report that on February 14, 2025, multiple users reported unauthorized access to their wallet assets. On-chain data analysis indicated that the incidents “exhibited characteristics of mnemonic phrase/private key leakage.” Further follow-ups with affected users revealed “that most of them… Read More

February 25, 2025 @ 7:33 am By Omar Faridi  |  

Kaspersky Global Research & Analysis Team (GReAT) discovered hundreds of open source repositories with multistaged malware targeting gamers and crypto investors within a new campaign that was dubbed by Kaspersky as GitVenom. The infected projects include an automation instrument for “interacting with Instagram accounts, a… Read More

February 6, 2025 @ 3:12 pm By Omar Faridi  |  

Kaspersky has discovered a new data-stealing Trojan, SparkCat, active in the Apple App Store and Google Play. This is said to be the “first known instance” of optical recognition-based malware appearing in AppStore. Kaspersky said they found comments in the code written in Chinese, possibly… Read More

December 29, 2024 @ 5:05 pm By Omar Faridi  |  

Recently, several users on X reported a phishing attack disguised as Zoom meeting links, according to an update from SlowMist. In one case, SlowMist pointed out that a victim installed malicious software after clicking on a fake Zoom meeting link, reportedly resulting in the “theft… Read More

December 27, 2024 @ 9:49 am By Omar Faridi  |  

Lazarus’ key operation – “Operation DreamJob” – continues to evolve with sophisticated tactics (involving malware and malicious activities) that have persisted for over five years, according to Kaspersky‘s Global Research and Analysis Team. The targets reportedly include workers from a nuclear-related organization, who were infected… Read More

December 21, 2024 @ 6:56 am By Michael Wong  |  

Cybercriminal activity on the dark web surged in 2024, with significant growth in discussions around crypto-drainer malware and advertisements for corporate database breaches, according to Kaspersky’s latest Security Bulletin. The report highlights an evolving cyber threat landscape, with increased interest in malware targeting cryptocurrency wallets… Read More