Darktrace reveals ShadowV2 botnet exploiting Docker misconfigurations in AWS

The campaign detailed in the report, dubbed “ShadowV2,” is a Python-based command-and-control framework hosted on GitHub ...
WeLiveSecurity

DeceptiveDevelopment: From primitive crypto theft to sophisticated AI-based deception

ESET researchers reveal how malware operators collaborate with covert North Korean IT workers, posing a threat to both headhunters and job seekers.
CSO Online

ShadowV2 turns DDoS into a cloud-native subscription service

The DDoS-for-hire campaign exploits misconfigured Docker containers on AWS, using cloud-native environments for industrial ...

AI just created a virus that kills bacteria—should we be scared?

Stanford and Arc Institute used AI to design viruses that kill bacteria, sparking hope for new therapies and warnings over biosecurity risks.
CSO Online

Evolved PXA Stealer wraps PureRAT in multi-layer obfuscation

The stealer campaign has evolved into a multi-stage delivery chain that ultimately deploys the modular, feature-rich PureRAT.
Research Snipers

A Steam Game’s Malicious Update Steals $32,000 From a Cancer Streamer’s Livestream

The case of the Latvian streamer Raivo Plavniek is particularly tragic, known as RastlandTV. The content creator, suffering ...
Infosecurity Magazine

Phishing Campaign Evolves into PureRAT Deployment, Linked to Vietnamese Threat Actors

The attackers used process hollowing against RegAsm.exe, patched Windows defenses such as AMSI and ETW and unpacked further ...

Python developers targeted with new password-stealing phishing attacks - here's how to stay safe

“If you have already clicked on the link and provided your credentials, we recommend changing your password on PyPI immediately,” Larson warned. “Inspect your account's Security History for anything ...