Exploits

Newly emergent BQTLock ransomware-as-a-service which has been associated with alleged pro-Palestinian hacktivist group Liwaa Mohammed's leader ZerodayX has already gained a new variant with...

Cybersecurity researchers have observed a surge in deceptive sites masquerading as YouTube video download services to deliver Proxyware malware in recent weeks. Victims seeking...

BleepingComputer reports that Indian government and defense organizations have been targeted by Pakistan-linked threat operation APT36, also known as Transparent Tribe, in attacks involving...

A novel macOS infostealer malware, designated as Mac.c, has emerged as a formidable contender in the underground malware-as-a-service (MaaS) ecosystem. Developed openly by a...

Pierluigi Paganini August 25, 2025 Transparent Tribe (aka APT36, Operation C-Major, and Mythic Leopard), a Pakistan-linked threat actor, is using Linux .desktop files to...

The number of publicly known ransomware victims jumped early 70% compared to the same period in 2023 and 2024, according to the newly released...

Pierluigi Paganini August 25, 2025 Doctor Web researchers observed a multifunctional backdoor Android.Backdoor.916.origin targeting Android devices belonging to representatives of Russian businesses. The malware...

New macOS stealer 'Mac.c' sold on darknet for $1,500/month, targeting credentials, crypto wallets, and metadata with stealthy tactics. 

KorPlug malware uses O-LLVM obfuscation & DLL side-loading to evade detection, complicate analysis, and execute via EnumSystemGeoID.