The botnet sends out spam emails that attempt to deliver a malicious payload to victims. Over the past month, it's been used to power an Avaddon ransomware campaign.

The GoldenHelper backdoor was embedded within Golden Tax Invoicing Software, part of the Chinese government' Golden Tax Project and required for issuing invoices and paying value-add tax (VAT) taxes.

Welcome Chat targets users from a specific region of the world and relies on open source code for recording calls, stealing text messages, and tracking.

Brazilian hackers have used the Guildma, Javali, Melcoz, and Grandoreiro banking trojan families to target users across South America and Europe.

The Adning Advertising plugin for WordPress contained a critical RCE vulnerability that can be exploited by unauthenticated actors. This is a premium plugin with over 8,000 customers.

Conti is a human-operated ransomware that uses up to 32 simultaneous CPU threads to encrypt files on infected systems for superfast encryption speeds.

A new variant of Mirai botnet was found targeting specific versions of IP cameras, smart TVs, and routers, by exploiting a mix of new and old vulnerabilities in various popular brands.

The noticeable changes in the latest Lampion variant include - changes in the VBS downloader, improvements in anti-VM techniques, and changes in the C2 server communication process.

Following a reverse engineering process, SentinelLabs researchers were able to create a free public decryptor tool, which was released under the GNU GPL v2.0 free software license.

According to the latest findings, the Purple Fox EK has added two new exploits, both of which were already patched a few months ago by Microsoft.