In May 2025, cybersecurity firm Darktrace identified a novel botnet named "PumaBot" targeting Internet of Things (IoT) surveillance devices. Unlike traditional botnets that scan the internet indiscriminately, PumaBot employs a more focused approach, retrieving specific targets from a command-and-con
According to a recent U.S. Office of Public Affairs announcement, in May 2025, a significant international cybersecurity operation successfully dismantled the Lumma Stealer malware network. This notorious information-stealing tool had compromised nearly 400,000 Windows computers worldwide in just tw
In a recent report published by cybersecurity firm GData, printer manufacturer Procolored inadvertently distributed malware-infected software through its official website for approximately six months. The compromised software downloads, hosted on Mega.nz and last updated in October 2024, included 39
Threat actors behind recent ransomware attacks targeting UK-based Marks & Spencer and Harrods are now targeting retailers in the United States, as Google Threat Intelligence Group reported. Speaking to Bleeping Computer, John Hultquist, Chief Analyst at Google Threat Intelligence Group, sa
According to security firm ZScaler, the popular information stealer and malware downloader StealC has received a massive upgrade in recent months and is currently tracked by multiple sources as Stealc_v2. StealC has been sold on underground hacking forums since January 2023. In March 2025, Ste
Despite several international law enforcement operations cracking down on ransomware operations, cybercriminals still make significant profits despite the risk. Law enforcement operations have forced certain ransomware groups, particularly those in the Ransomware-as-a-Service (RaaS) sphere, to evolv
In a new report published by fraud prevention firm Cleafy, researchers have discovered a new Android-based malware, named SuperCard X, that is capable of fraudulently authorizing Point-of-Sale (POS) payments and Automated Teller Machine (ATM) withdrawals by intercepting and relaying Near Field Commu
In a new report by Morphisec, security researchers discovered a new malware threat targeting healthcare organizations. The threat is named ResolverRAT by Morphisec researchers due to its heavy reliance on runtime resolution mechanisms and dynamic resource handling, which makes the remote access troj
A new report published by Outpost24 and written by Kraken Labs unveils the double life lived by up-and-coming threat actor EncryptHub, who has been linked to the breaching of 618 organizations to deploy ransomware and info stealers. The part-time threat actor is believed to have also reported two vu
Android users have long been the target of sophisticated banking trojan malware families. Some of the most prevalent threats, which have seen constant development and evolution, are Anatsa, Hook, and Octo. In a recent report by Threat Fabric, a new malware strain, Crocodilus, can be added to that li