Topic: rootkit capabilities

Sort by: Relevance | Date
  • Chinese Hackers Hide ToneShell Malware with Rootkit
    December 31, 2025
    85%

    Chinese Hackers Hide ToneShell Malware with Rootkit

    A new cyberespionage campaign targets Asian governments using an advanced kernel-mode rootkit to deploy the ToneShell backdoor, attributed to the Mustang Panda hacking group. The rootkit employs sophisticated stealth techniques, including a stolen certificate, dynamic API resolution, and active i...

    Read More »
  • SonicWall SMA Devices Still Infected with Stealthy OVERSTEP Malware
    July 18, 2025
    85%

    SonicWall SMA Devices Still Infected with Stealthy OVERSTEP Malware

    Cybersecurity experts discovered a malware campaign targeting outdated SonicWall SMA 100 devices, deploying the stealthy OVERSTEP backdoor via stolen admin credentials and potential vulnerabilities. The OVERSTEP malware hijacks system functions, steals sensitive data, and evades detection, with a...

    Read More »

Related Topics

indicators of compromise (1) remote operations (1) zero-day vulnerability (1) toneshell backdoor (1) googles threat intelligence group warning (1) mustang panda (1) sonicwall sma 100 series appliances (1) kernel-mode loader (1)