Chinese state hackers target telcos with new malware toolkit malware families the researchers discovered read more about Chinese state hackers target telcos with new malware toolkit

Chinese state hackers target telcos with new malware toolkit reconbee.com/chinese-stat...

#chinese #chinesestatehackers #telcome #malware #malwareattack #toolkit

Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware infrastructure to stage harmful payloads read more about Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware

Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware reconbee.com/dust-specter...

#Iraq #iraqi #SPLITDROP #GHOSTFORMmalware #malware #malwareattack #cyberattack

Passaic County Hit By Malware Attack
Read More: buff.ly/jVKWJq4

#MunicipalCyber #MalwareAttack #CountyGovernment #CriticalServices #IncidentResponse #PublicSectorSecurity #CyberDisruption #Infosec

Passaic County, New Jersey malware attack knocks out phone lines Passaic County, N.J., says malware hit IT systems, taking county phone lines down. Officials working with state and federal partners.

Passaic County, New Jersey malware attack knocks out phone lines #NewJersey #MalwareAttack #PhoneOutage #LocalGovernment #ITSystems #Investigation dysruptionhub.com/passaic-county-malware-p...

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware platforms like Bitbucket read more about Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware reconbee.com/microsoft-wa...

#microsoft #Nextjs #job #fakejob #malware #malwareattack

Malicious NuGet Packages Stole ASP.NET Data npm Package Dropped Malware setting up a local proxy on localhost read more about Malicious NuGet Packages Stole ASP.NET Data npm Package Dropped Malware

Malicious NuGet Packages Stole ASP. NET Data; npm Package Dropped Malware reconbee.com/malicious-nu...

#malicious #NuGetpackages #NuGet #npmpackage #malware #malwareattack

FBI Reports 1,900 ATM Jackpotting Incidents
Read More: buff.ly/sLZIJ7v

#ATMJackpotting #FinancialCybercrime #BankingSecurity #MalwareAttack #PhysicalSecurity #FBIwarning #FraudPrevention #Infosec

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging computers with malware read more about Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging reconbee.com/microsoft-di...

#microsoft #DNS #clickfixattack #Nslookup #malware #malwareattack

Over one billion Android phones are vulnerable as Google ended security updates for Android 12 and older versions in March 2025.

Read Full Article: deccanfounders.com/2026/09/n...

#Android #MalwareAttack #DeccanFounders #Google #Cybersecurity

China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking Malware Delivery updates and binary downloads read more about China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking Malware Delivery

China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking Malware Delivery reconbee.com/china-linked...

#china #chinese #Dknife #AitMframework #routers #traffichijacking #malware #malwareattack

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks the corresponding nations read more about APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks reconbee.com/apt28-uses-m...

#APT28 #microsoftoffice #microsoft #Espionage #malware #malwareattack #cyberattacks

eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware one of its regional update server settings read more about eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware

eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware reconbee.com/escan-antivi...

#eScanantivirus #antivirus #malware #malwareattack #CybersecurityNews #cyberattacks

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users download of poisoned executables read more about Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users reconbee.com/notepad-offi...

#notepad #hijacked #malware #malwareattack #cybersecurity #cyberattacks

New malware service guarantees phishing extensions on Chrome web store web panel and complete functionality read more about New malware service guarantees phishing extensions on Chrome web store

New malware service guarantees phishing extensions on Chrome web store reconbee.com/new-malware-...

#malware #malwareattack #phishing #phishingextension #chromewebstore #cyberattack

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware framework despite being presented read more about Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware reconbee.com/indian-users...

#phishingcampaign #blackmoonmalware #malwareattack #malware #phishing #cyberattack

Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations improved payload delivery read more about Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations

Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations reconbee.com/security-bug...

#stealcmalware #malware #malwareattack #spy

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces revisions have included obfuscation read more about PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces reconbee.com/pluggyape-ma...

#PLUGGYAPE #pluggyapemalware #malwareattack #malware #WhatsApp #ukrainian #defenseforce

GlassWorm Malware Returns with MacOS-focused Attack via VS Code Extensions  A fourth wave of the GlassWorm malware campaign is targeting macOS developers through malicious extensions distributed on the OpenVSX registry and the Microsoft Visual Studio Marketplace, according to researchers at Koi Security.  The campaign involves compromised extensions designed for VS Code compatible editors. These extensions, which typically add productivity tools or language support, have been weaponised to deliver malware that steals developer credentials and cryptocurrency data.  GlassWorm was first identified in October after being hidden inside extensions using invisible Unicode characters. Once installed, the malware attempted to harvest login details for GitHub, npm and OpenVSX accounts, as well as data from cryptocurrency wallet extensions.  It also enabled remote access via VNC and allowed attackers to route traffic through infected systems using a SOCKS proxy. Despite public disclosure and additional safeguards, the malware resurfaced in early November on OpenVSX and again in early December on the VS Code marketplace.  In the latest campaign, researchers observed a shift in tactics. The new wave targets macOS systems exclusively, unlike earlier versions that focused on Windows. The malware now uses an AES 256 CBC encrypted payload embedded in compiled JavaScript within OpenVSX extensions, rather than invisible Unicode characters or compiled Rust binaries.  The identified extensions include studio velte distributor pro svelte extension, cudra production vsce prettier pro and puccin development full access catppuccin pro extension. The malicious code activates after a 15 minute delay, likely to avoid detection in automated analysis environments.  Persistence is achieved through macOS LaunchAgents, and AppleScript is used instead of PowerShell. The campaign continues to rely on a Solana blockchain based command and control mechanism, with infrastructure overlaps seen across earlier waves.  Koi Security said the malware now attempts to extract macOS Keychain passwords and checks for installed hardware wallet applications such as Ledger Live and Trezor Suite.  If found, it attempts to replace them with trojanised versions. Researchers noted that this feature is currently not functioning as intended, with the substituted wallet files appearing empty.  According to Koi Security, all other malicious capabilities remain active, including credential theft, data exfiltration and system persistence.  OpenVSX has flagged warnings for two of the identified extensions, citing unverified publishers. While download figures show more than 33,000 installs, researchers warned that such metrics are often inflated to create a false sense of legitimacy.  Developers who installed any of the affected extensions are advised to remove them immediately, reset GitHub passwords, revoke npm access tokens and check systems for compromise. Reinstalling the operating system may be necessary in cases of confirmed infection.

GlassWorm Malware Returns with MacOS-focused Attack via VS Code Extensions #GlassWorm #malware #MalwareAttack

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware response to particular website DNS requests read more about China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware reconbee.com/china-linked...

#china #chinese #Panda #DNSpoisoningcampaign #MgBotmalware #malware #malwareattack

What is Malware ? Its Types and How to Prevent It how it spreads, the damage it causes and you will get complete information about What is Malware ? Its Types and How to Prevent It

This article delves into the world of malware, exploring its types and how it spreads

read more: reconbee.com/what-is-malw...

#malware #MalwareDev #malwareattack #malwaretypes #cyberattack #cybercrime

WebRAT malware spread via fake vulnerability exploits on GitHub multiple vulnerabilities that had been reported in the media read more about WebRAT malware spread via fake vulnerability exploits on GitHub

WebRAT malware spread via fake vulnerability exploits on GitHub reconbee.com/webrat-malwa...

#WebRATmalware #malwareattack #malware #WebRAT #GitHub #cybersecurity #cyberattack #vulnerability

New MacSync malware dropper evades macOS Gatekeeper checks notarized and code-signed after examining it read more about New MacSync malware dropper evades macOS Gatekeeper checks

New MacSync malware dropper evades macOS Gatekeeper checks reconbee.com/new-macsync-...

#MacSyncmalware #malwareattack #macOSgatekeeper #malware #cyberattacks

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware and money laundering in an indictment read more about U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware reconbee.com/u-s-doj-char...

#departmentofjustice #US #UnitedStates #ATMRobbery #ATMjackpotting #jackpotting #ploutusmalware #malwareattack

Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence victim profiler that installs Tonnerre read more about Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence

Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence reconbee.com/iranian-infy...

#Iranian #APT #malware #malwareattack #iran #cyberattack

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware administer server systems read more about China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware reconbee.com/china-aligne...

#china #chinese #chinesehackers #Windows #espionagemalware #malware #malwareattack

Firefox users: GhostPoster malware is hiding in extension logos. Remove risky add-ons and secure your browser now.
📞 Contact Technijian: (949) 379-8499
#CyberSecurity #FirefoxSecurity #MalwareAttack #BrowserExtensions #Steganography #OnlineSafety #ITSecurity #Technijian

GhostPoster Malware Found in 17 Firefox Add-ons with 50000+ Downloads malware payload that tracks everything you visit read more about GhostPoster Malware Found in 17 Firefox Add-ons with 50000+ Downloads

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads reconbee.com/ghostposter-...

#ghostposter #malware #malwareattack #mozillafirefox #cyberattack

China-Linked Ink Dragon Hacks Governments Using ShadowPad and FINALDRAFT Malware campaign is still in progress read more about China-Linked Ink Dragon Hacks Governments Using ShadowPad and FINALDRAFT Malware

China-Linked Ink Dragon Hacks Governments Using ShadowPad and FINALDRAFT Malware reconbee.com/china-linked...

#china #InkDragon #government #shadowpad #FINALDRAFT #malware #malwareattack #cyberattack

New SantaStealer malware steals data from browsers crypto wallets samples we have seen thus far are neither undetectable read more about New SantaStealer malware steals data from browsers crypto wallets

New SantaStealer malware steals data from browsers, crypto wallets reconbee.com/new-santaste...

#santastealer #santastealermalware #malware #malwareattack #browsers #data #cryptowallet #cybersecurity

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems task management system read more about NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems reconbee.com/nanoremote-m...

#NANOREMOTE #malware #malwareattack #Google #googledrive #API #windows #cyberattack