Cybernews

KongTuke’s CrashFix campaign uses fake Chrome adblocker to deploy ModeloRAT

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...
The Hacker News

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...
SecurityWeek

‘SolyxImmortal’ Information Stealer Emerges

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...
小黑盒生活 on MSN

硬核科普:Python类应用是如何悄无声息往电脑植入后门的?

【本文由小黑盒作者@周铁男是我于01月17日发布,转载请标明出处!】 今天看到火绒团队发的《银狐后门:Python库压缩包篡改与Chrome伪装攻击分析》后,感觉这里用到了一种很新奇的方法,于是我做了复现,顺便分享给大家共同学习 ...

黑客利用c-ares DLL侧加载漏洞绕过安全系统投放恶意软件

网络安全专家披露了一起活跃的恶意软件攻击活动详情,黑客正在利用开源c-ares库相关合法二进制文件中的DLL侧加载漏洞来绕过安全控制,并投放各种商业木马和窃取程序。
InfoQ

Django Releases Version 6.0 with Built-In Background Tasks and Native CSP Support

Django 6.0 has arrived, offering developers cutting-edge features like a built-in tasks framework, enhanced security with ...
The Hacker News

Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware

Active malware exploits DLL side-loading in a signed GitKraken binary to deliver trojans, stealers, and remote access malware ...

Ukraine's army targeted in new charity-themed malware campaign

Officials of Ukraine's Defense Forces were targeted in a charity-themed campaign between October and December 2025 that ...
Dark Reading

AsyncRAT Malware Infests Orgs via Python & Cloudflare

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...