Topic: infection chain

Sort by: Relevance | Date
  • XWorm Malware Returns with Ransomware & 35+ Plugins
    October 7, 2025
    86%

    XWorm Malware Returns with Ransomware & 35+ Plugins

    XWorm malware has evolved with ransomware capabilities and over 35 plugins, distributed by multiple threat actors through phishing campaigns after the original developer's departure. Initially a versatile remote access trojan, it steals sensitive data, enables DDoS attacks, and has been widely ad...

    Read More »
  • Unmasking FileFix: Steganography & Multistage Payloads Exposed
    September 19, 2025
    85%

    Unmasking FileFix: Steganography & Multistage Payloads Exposed

    A cyberattack campaign called FileFix uses steganography to hide malicious code in JPG images, delivered via a phishing site that mimics Meta's support portal. The attack employs advanced techniques like multilingual phishing pages, obfuscated PowerShell scripts, and RC4 decryption to deploy the ...

    Read More »
  • North Korean Lazarus Hackers Target European Defense Firms
    October 24, 2025
    65%

    North Korean Lazarus Hackers Target European Defense Firms

    North Korea's Lazarus hacking group targeted European UAV defense firms through a deceptive recruitment campaign called Operation DreamJob, aiming to steal military drone technology. The attackers used trojanized applications and DLL sideloading to deploy the ScoringMathTea RAT, granting extensiv...

    Read More »

Related Topics

social engineering (2) threat actors (1) eset research (1) data theft (1) remote access trojan (1) phishing campaigns (1) sandbox evasion (1) lazarus hackers (1)