malware Archives

Anyproxy, 5socks botnet domains seized. — Federal authorities seized the domains allegedly used for Anyproxy and 5socks botnets. (Screenshot of Anyproxy.net)

US seizes Anyproxy, 5socks botnets and indicts alleged administrators

The long-running botnet operation used malware that infected older wireless internet routers over a 20-year period, according to federal prosecutors.

4 days ago By Matt Kapko

Infostealers fueled cyberattacks and snagged 2.1B credentials last year

Inexpensive information-stealing malware surged in 2024, infecting 23 million hosts, according to Flashpoint.

Mar 18, 2025 By Matt Kapko

In this picture taken near the truce village of Panmunjom inside the demilitarized zone (DMZ) separating the two Koreas, a bird flies near a North Korean flag fluttering in the wind at the propaganda village of Gijungdong in North Korea on October 4, 2022. (Photo by ANTHONY WALLACE/AFP via Getty Images)

Lazarus Group deceives developers with 6 new malicious npm packages

Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.

Mar 12, 2025 By Matt Kapko

New zero-day exploit targets Ivanti VPN product

After Ivanti detected the activity, Mandiant says it found malware in impacted devices associated with a Chinese-linked threat group.

Jan 9, 2025 By Matt Bracken

A hacker with China’s national flag in background. (Getty Images)

PHP backdoor looks to be work of Chinese-linked APT group

Known as Glutton, researchers at QiAnXin’s XLab believe Winnti is responsible for the malware.

Dec 16, 2024 By Greg Otto

Treasury sanctions Chinese cyber company, employee for 2020 global firewall attack

The department’s Office of Foreign Assets Control said Guan Tianfeng used a zero-day exploit to deploy malware on 81,000 firewalls.

Dec 10, 2024 By Matt Bracken

Malware linked to Salt Typhoon used to hack telcos around the world

A report from Trend Micro details the highly sophisticated ways Salt Typhoon carries out its operations.

Nov 25, 2024 By Greg Otto

The U.S. Department of Justice is seen on June 20, 2023 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

US charges Russian national for developing RedLine infostealer

Maxim Rudometov, who is believed to reside in southern Russia, is not likely to be extradited.

Oct 29, 2024 By Christian Vasquez

A screenshot of a video showing users of infostealer services. (Dutch National Police)

Operation Magnus targets Redline, Meta infostealers

Authorities say they've gained "full access" to the hackers' servers.

Oct 28, 2024 By Christian Vasquez

The original stock picture (left) and an AI fake (right) used by a North Korean threat actor who posed as a U.S.-based software engineer and was hired by the cyber firm KnowBe4. (Photo credit: KnowBe4)

Cyber firm KnowBe4 hired a fake IT worker from North Korea

The security awareness training company said in a blog post that the software engineer used stolen U.S. credentials and an AI-enhanced photo.

Jul 24, 2024 By Matt Bracken