#onpatrol4malware search results

#APT36 cyberspies are using Linux .desktop files to deploy #malware against Indian government and defense organizations. Researchers report this targets data theft and espionage. #onpatrol4malware bleepingcomputer.com/news/security/…

#CORNFLAKE.V3 is a JavaScript or PHP #backdoor that executes payloads like shell commands, executables, and DLLs via HTTP. It gathers system info to send to remote servers and uses Cloudflare Tunnels to proxy traffic. #onpatrol4malware cloud.google.com/blog/topics/th…

A report finds nearly 2 dozen #VPNapps on Google Play have security #vulnerabilities. Despite claims of independence, these VPN providers are interconnected, with some apps sharing code and passwords, posing significant risks. #onpatrol4malware securityweek.com/new-research-l…

#HazyTiger is an India-nexus targeted intrusion adversary, primarily engaged in espionage and information theft. The actor has been active since at least 2015. Learn more about them on our #ThreatActorProfiles link below 👇 #onpatrol4malware malwarepatrol.net/threat-actor-p…

#BlackMatter is a Ransomware-as-a-Service (#RaaS) strain that encrypts files, removes recovery options, and extorts victims. #onpatrol4malware

Colt Technology Services experienced a cyberattack that has disrupted operations. The attacker, under the alias ‘cnkjasdfgd’ and purportedly part of the #WarLock #ransomware group, is allegedly selling one million stolen documents. #onpatrol4malware bleepingcomputer.com/news/security/…

Researchers have seen a significant rise in brute-force attacks on #Fortinet SSL VPN devices. Over 780 unique IP addresses from the US, Canada, Russia, and the Netherlands are involved. Make sure your security settings are up to date. #onpatrol4malware bleepingcomputer.com/news/security/…

#APT #SideWinder is copying government and defense login pages in Nepal, Bangladesh, and Turkey. They use Netlify and Pages.dev to host fake Zimbra and Secure Portal pages, tricking users into sharing their credentials. #onpatrol4malware hunt.io/blog/apt-sidew…

A recent #malware bypassed almost every public sandbox and antivirus, except Threat.Zone, and even evaded EDR/XDR in real-world incidents. Many banks, ISPs, and organizations were impacted. #ThreatIntelligence #onpatrol4malware malwation.com/blog/technical…

#EverestForms versions 3.2.2 and below have a security #vulnerability. When an admin views form submissions, the plugin may try to read unsafe data, which can be risky. #onpatrol4malware patchstack.com/articles/criti…

Ukraine’s Defence Intelligence claims its hackers have stolen secret files from Russia’s “#KnyazPozharsky” nuclear submarine. The #StolenData could reveal important details about its technology. #onpatrol4malware bitdefender.com/en-us/blog/hot…

Cybersecurity researchers have found a new #AndroidTrojan, #PlayPraetor, infecting over 11,000 devices in several countries. It uses accessibility services to take remote control and can fake login screens for banking and crypto apps. #onpatrol4malware thehackernews.com/2025/08/playpr…

SentinelLABS and Beazley Security have discovered new #infostealer campaigns using Python-based #PXAStealer. These attacks use fake files, smart anti-analysis tricks, and stronger control systems to avoid detection. #onpatrol4malware sentinelone.com/labs/ghost-in-…

#Mozilla has issued a warning to extension developers about a #phishing campaign targeting accounts on its AMO repository. Fake emails are pretending to be from the AMO team, asking for updates to keep access. #onpatrol4malware bleepingcomputer.com/news/security/…

In late 2024, a #cyberattack affected the Russian IT industry and others. Attackers used social media and sites like GitHub to hide #CobaltStrikeBeacon. This method helped them avoid detection and build a complex attack chain. #onpatrol4malware securelist.com/cobalt-strike-…

Threat actors used physical access and a new Linux anti-forensics method (#T1564.013) to hide in ATM switching systems. Only memory and network forensics could detect their custom #malware. This technique is now listed in MITRE ATT&CK. #onpatrol4malware group-ib.com/blog/unc2891-b…

#DPRK has changed its approach from direct crypto thefts to a more secretive model. Disguised IT workers now secure remote jobs at global tech firms, earning crypto and sending funds home through hidden networks. #ThreatIntelligence #onpatrol4malware dti.domaintools.com/from-laptops-t…

A #BankerTrojan has changed how it spreads, now using #BogusWebsites that host malware samples directly within Discord channels. It can now capture screens and run new commands. Researchers found 25 old and 9 new samples. #onpatrol4malware zimperium.com/blog/behind-ra…

SentinelLABS identified 10+ patents for forensics and data collection tools registered by companies named in U.S. indictments for working with the #HafniumGroup. These tools can access encrypted data, mobile devices, and network traffic. #onpatrol4malware sentinelone.com/labs/chinas-co…

#ToxicPanda is an #AndroidBankingTrojan designed to steal banking and digital wallet logins, overlay pin & pattern codes, and perform unauthorized transactions. The malware campaign peaked at 4500 infected devices in Europe. #onpatrol4malware bitsight.com/blog/toxicpand…

Check out our latest biweekly blog post for a digest of the top #cybersec news. #onpatrol4malware malwarepatrol.net/infosec-articl…

Check out our latest biweekly blog post for a digest of the top #cybersec news. #onpatrol4malware malwarepatrol.net/infosec-articl…

Our Emergent Threats Domain Feed harnesses predictive intelligence to identify and block zero-day and emerging threats before they strike. Protect your networks and assets with intelligence that looks forward. Request a demo now. #onpatrol4malware malwarepatrol.net/emergent-threa…

Our annual sale is on. New customers get 25% off the first year of any threat data feed subscription. Valid until Dec 31st. Request your free trial today. --> malwarepatrol.net/enterprise-eva… #CyberSecurity #ThreatIntel #onpatrol4malware

#ToddyCat is an APT group that utilizes sophisticated backdoors and advanced infiltration techniques to achieve its espionage objectives. Learn more about them on our #ThreatActorProfiles link below 👇 #onpatrol4malware malwarepatrol.net/threat-actor-p…

Our Emergent Threats Domain data feed harnesses predictive intelligence to identify and block zero-day and emerging threats before they strike. Protect your networks and assets with intelligence that looks forward. Request a demo now. #onpatrol4malware malwarepatrol.net/emergent-threa…

#HazyTiger is an India-nexus targeted intrusion adversary, primarily engaged in espionage and information theft. The actor has been active since at least 2015. Learn more about them on our #ThreatActorProfiles link below 👇 #onpatrol4malware malwarepatrol.net/threat-actor-p…

It’s here: our only annual discount. New customers get 25% off your first year, until Dec 31st. Request your free trial today. --> malwarepatrol.net/enterprise-eva… #CyberSecurity #ThreatIntel #onpatrol4malware

Our latest Security Signals newsletter is live.➡️And don't forget that we also offer (3) free, machine-readable #OSINT feeds with the IOCs shared in these featured articles. malwarepatrol.net/early-february… #onpatrol4malware #cybersec

The Emergent Threats Domains feed enhances traditional threat intelligence by providing forward-looking visibility into potential threats, allowing for the blocking of high-risk domains. Request a demo with us today. #onpatrol4malware malwarepatrol.net/emergent-threa…

Our annual sale is underway. New customers get 25% off their first year's subscription. Includes all threat data feeds & packages. Valid until Dec 31st. Request your free trial today. --> malwarepatrol.net/enterprise-eva… #CyberSecurity #ThreatIntel #onpatrol4malware

Our annual sale is on. New customers get 25% off their first year's subscription. Includes all data feeds and packages. Valid until Dec 31st. Request your free trial today. --> malwarepatrol.net/enterprise-eva… #CyberSecurity #ThreatIntel #onpatrol4malware

#APT41 is a highly sophisticated and very active Chinese state-sponsored APT group. It engages in both cyber espionage and financially motivated cybercrime activities. Learn more about them on our #ThreatActorProfiles link below 👇 #onpatrol4malware malwarepatrol.net/threat-actor-p…

Our annual sale is on. New customers get 25% off their first year's subscription. Offer includes all threat data feeds & packages. Valid until Dec 31st. Learn more. --> malwarepatrol.net/enterprise-thr… #CyberSecurity #ThreatIntel #onpatrol4malware