Lookalike npm Package Hides a Multi-Stage Windows RAT
JFrog found an npm package impersonating postcss-selector-parser to drop a multi-stage Windows RAT
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
JFrog found an npm package impersonating postcss-selector-parser to drop a multi-stage Windows RAT
Cisco Talos uncovers CloudZ RAT and Pheno plugin abusing Microsoft Phone Link to intercept SMS OTPs
Deep#Door Python RAT uses tunneling and obfuscation to evade detection and steal credentials
New Remcos RAT variant enhances real-time surveillance and evasion techniques to compromise Windows
SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection techniques
Fortinet has identified a new Windows RAT operating stealthily on compromised systems with advanced evasion techniques
The new Remcos RAT variant identified in a new phishing campaign exploits CVE-2017-0199 via malicious Excel files
The ELF backdoor, initially thought to be a variant of existing malware, has a Windows and a Linux version
Zscaler’s ThreatLabz discovered malware spreading SpyNote RAT to Android and NjRAT/DCRat to Windows
Discovered by Proofpoint, ZenRAT is a modular remote access trojan targeting Windows users
The behavior of the actors was reportedly identical to what was described by Minerva Labs in 2021
The malware was first released for sale on January 26, 2022 as an HVNC implant, but later evolved