Ukrainian cybersecurity authorities have identified what experts believe to be the first malware campaign that directly integrates large language model (LLM) capabilities into its attack methodology.
The malware, dubbed LAMEHUG, was discovered by Ukraine's Computer Emergency Response Team (CERT-UA) and represents a significant evolution...
Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have uncovered a significant evolution in the distribution tactics of RokRAT malware, with threat actors now leveraging weaponized Hangul Word Processor (.hwp) documents instead of their traditional shortcut file methods.
This shift represents a concerning adaptation...
Cybersecurity researchers from Zscaler ThreatLabz, in collaboration with TibCERT, have uncovered two sophisticated cyberattack campaigns targeting the Tibetan community in anticipation of the Dalai Lama's 90th birthday in July 2025.
The campaigns, dubbed Operation GhostChat and Operation PhantomPrayers, deployed advanced malware including Ghost RAT...
Cybersecurity researchers have identified a significant evolution in the ACRStealer information-stealing malware, which has been actively distributed since early 2024, featuring enhanced evasion techniques and sophisticated command-and-control (C2) communication methods.
The malware utilizes Google Docs and Steam as C2 infrastructure through a Dead Drop...
A newly uncovered variant of the persistent macOS.ZuRu malware has been detected in the wild, exploiting a compromised version of the popular Termius SSH client.
This sophisticated campaign, targeting developers and IT professionals since late May 2025, utilizes advanced evasion tactics to establish remote...
In a significant evolution of cybercrime tactics, Akamai researchers have unveiled that the notorious Coyote banking trojan is now abusing Microsoft’s UI Automation (UIA) framework to harvest credentials from Brazilian banking and cryptocurrency users.
This marks the first time in-the-wild malware has been definitively...