home.social
Sign in Create account

#malware — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #malware, aggregated by home.social.

  1. HackerWorkspace @[email protected] ·

    How to Investigate with Windows Prefetch Files

    youtube.com/watch?v=PDKOjf8Nkps

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  2. HackerWorkspace @[email protected] ·

    How to Investigate with Windows Prefetch Files

    youtube.com/watch?v=PDKOjf8Nkps

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  3. HackerWorkspace @[email protected] ·

    How to Investigate with Windows Prefetch Files

    youtube.com/watch?v=PDKOjf8Nkps

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  4. HackerWorkspace @[email protected] ·

    How to Investigate with Windows Prefetch Files

    youtube.com/watch?v=PDKOjf8Nkps

    #malware #cybersecurity #incidentresponse

    #incidentresponse #cybersecurity #malware
  5. HackerWorkspace @[email protected] ·

    Kazuar: Anatomy of a nation-state botnet | Microsoft Security Blog

    microsoft.com/en-us/security/b

    Read on HackerWorkspace: hackerworkspace.com/article/ka

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  6. HackerWorkspace @[email protected] ·

    Kazuar: Anatomy of a nation-state botnet | Microsoft Security Blog

    microsoft.com/en-us/security/b

    Read on HackerWorkspace: hackerworkspace.com/article/ka

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  7. HackerWorkspace @[email protected] ·

    Kazuar: Anatomy of a nation-state botnet | Microsoft Security Blog

    microsoft.com/en-us/security/b

    Read on HackerWorkspace: hackerworkspace.com/article/ka

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  8. HackerWorkspace @[email protected] ·

    Kazuar: Anatomy of a nation-state botnet | Microsoft Security Blog

    microsoft.com/en-us/security/b

    Read on HackerWorkspace: hackerworkspace.com/article/ka

    #malware #cybersecurity #incidentresponse

    #incidentresponse #cybersecurity #malware
  9. HackerWorkspace @[email protected] ·

    NATO Locked Shields 2026: RL Joins Live-Fire Cyber Event | RL Blog

    reversinglabs.com/blog/locked-

    Read on HackerWorkspace: hackerworkspace.com/article/na

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  10. HackerWorkspace @[email protected] ·

    NATO Locked Shields 2026: RL Joins Live-Fire Cyber Event | RL Blog

    reversinglabs.com/blog/locked-

    Read on HackerWorkspace: hackerworkspace.com/article/na

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  11. HackerWorkspace @[email protected] ·

    NATO Locked Shields 2026: RL Joins Live-Fire Cyber Event | RL Blog

    reversinglabs.com/blog/locked-

    Read on HackerWorkspace: hackerworkspace.com/article/na

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  12. HackerWorkspace @[email protected] ·

    NATO Locked Shields 2026: RL Joins Live-Fire Cyber Event | RL Blog

    reversinglabs.com/blog/locked-

    Read on HackerWorkspace: hackerworkspace.com/article/na

    #malware #cybersecurity #incidentresponse

    #incidentresponse #cybersecurity #malware
  13. HackerWorkspace @[email protected] ·

    Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage

    infosecurity-magazine.com/news

    Read on HackerWorkspace: hackerworkspace.com/article/mu

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  14. HackerWorkspace @[email protected] ·

    Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage

    infosecurity-magazine.com/news

    Read on HackerWorkspace: hackerworkspace.com/article/mu

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  15. HackerWorkspace @[email protected] ·

    Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage

    infosecurity-magazine.com/news

    Read on HackerWorkspace: hackerworkspace.com/article/mu

    #malware #cybersecurity #incidentresponse

    #malware #cybersecurity #incidentresponse
  16. HackerWorkspace @[email protected] ·

    Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage

    infosecurity-magazine.com/news

    Read on HackerWorkspace: hackerworkspace.com/article/mu

    #malware #cybersecurity #incidentresponse

    #incidentresponse #cybersecurity #malware
  17. Hackread.com @Hackread ·

    Hackers are using fake job interview apps to spread new malware across macOS and Windows systems, stealing crypto, browser credentials, and more disguising itself as a video meeting app.

    Read more: hackread.com/fake-job-intervie

    #jobstealer #cybersecurity #malware #macos #windows #crypto
  18. Hackread.com @[email protected] ·

    Hackers are using fake job interview apps to spread new #JobStealer malware across macOS and Windows systems, stealing crypto, browser credentials, and more disguising itself as a video meeting app.

    Read more: hackread.com/fake-job-intervie

    #CyberSecurity #Malware #macOS #Windows #Crypto #Scam

    #jobstealer #cybersecurity #malware #macos #windows #crypto
  19. The New Oil @[email protected] ·

    #Fragnesia Made Public As Latest #Linux Local Privilege Escalation Vulnerability

    phoronix.com/news/Linux-Fragne

    #cybersecurity #malware #FOSS

    #fragnesia #linux #cybersecurity #malware #foss
  20. The New Oil @[email protected] ·

    #Fragnesia Made Public As Latest #Linux Local Privilege Escalation Vulnerability

    phoronix.com/news/Linux-Fragne

    #cybersecurity #malware #FOSS

    #fragnesia #linux #cybersecurity #malware #foss
  21. The New Oil @[email protected] ·

    #Fragnesia Made Public As Latest #Linux Local Privilege Escalation Vulnerability

    phoronix.com/news/Linux-Fragne

    #cybersecurity #malware #FOSS

    #fragnesia #linux #cybersecurity #malware #foss
  22. The New Oil @[email protected] ·

    #Fragnesia Made Public As Latest #Linux Local Privilege Escalation Vulnerability

    phoronix.com/news/Linux-Fragne

    #cybersecurity #malware #FOSS

    #foss #malware #cybersecurity #linux #fragnesia
  23. The New Oil @[email protected] ·

    #Fragnesia Made Public As Latest #Linux Local Privilege Escalation Vulnerability

    phoronix.com/news/Linux-Fragne

    #cybersecurity #malware #FOSS

    #fragnesia #linux #cybersecurity #malware #foss
  24. PhishDestroy Alert @[email protected] ·

    🚨 PHISHING DETECTED 🚨

    🔗 Suspicious URL: seguritybandemo[.]vercel[.]app
    🔍 Analysis at: phishdestroy.io/domain/segurit

    #BlockchainFraud #fake #malware #NFT

    #blockchainfraud #fake #malware #nft
  25. Hackread.com @Hackread ·

    📢⚠️ China-linked hacking group targeted an oil and gas firm in using the ProxyNotShell exploit chain alongside Deed RAT and Terndoor malware across three persistent attack waves.

    Read: hackread.com/famoussparrow-oil

    #famoussparrow #azerbaijan #cybersecurity #china #msexchange #malware
  26. Hackread.com @[email protected] ·

    📢⚠️ China-linked #FamousSparrow hacking group targeted an oil and gas firm in #Azerbaijan using the ProxyNotShell exploit chain alongside Deed RAT and Terndoor malware across three persistent attack waves.

    Read: hackread.com/famoussparrow-oil

    #CyberSecurity #China #MSExchange #Malware #CyberAttack

    #famoussparrow #azerbaijan #cybersecurity #china #msexchange #malware
  27. Hackread.com @[email protected] ·

    📢⚠️ China-linked #FamousSparrow hacking group targeted an oil and gas firm in #Azerbaijan using the ProxyNotShell exploit chain alongside Deed RAT and Terndoor malware across three persistent attack waves.

    Read: hackread.com/famoussparrow-oil

    #CyberSecurity #China #MSExchange #Malware #CyberAttack

    #famoussparrow #azerbaijan #cybersecurity #china #msexchange #malware
  28. Hackread.com @[email protected] ·

    📢⚠️ China-linked #FamousSparrow hacking group targeted an oil and gas firm in #Azerbaijan using the ProxyNotShell exploit chain alongside Deed RAT and Terndoor malware across three persistent attack waves.

    Read: hackread.com/famoussparrow-oil

    #CyberSecurity #China #MSExchange #Malware #CyberAttack

    #cyberattack #malware #msexchange #china #cybersecurity #azerbaijan
  29. Hackread.com @[email protected] ·

    📢⚠️ China-linked #FamousSparrow hacking group targeted an oil and gas firm in #Azerbaijan using the ProxyNotShell exploit chain alongside Deed RAT and Terndoor malware across three persistent attack waves.

    Read: hackread.com/famoussparrow-oil

    #CyberSecurity #China #MSExchange #Malware #CyberAttack

    #famoussparrow #azerbaijan #cybersecurity #china #msexchange #malware
  30. Mac & i @[email protected] ·

    Foxconn-Werke in Nordamerika von Ransomware-Gruppe Nitrogen angegriffen

    Der Auftragsfertiger bestätigt den Cyberangriff. Nitrogen prahlt damit, 11 Millionen Dateien zu Apple, Nvidia und weiteren Kunden gestohlen haben.

    heise.de/news/Foxconn-Werke-in

    #Foxconn #IT #Malware #Security #Wirtschaft #news

    #foxconn #it #malware #security #wirtschaft #news
  31. Mac & i @[email protected] ·

    Foxconn-Werke in Nordamerika von Ransomware-Gruppe Nitrogen angegriffen

    Der Auftragsfertiger bestätigt den Cyberangriff. Nitrogen prahlt damit, 11 Millionen Dateien zu Apple, Nvidia und weiteren Kunden gestohlen haben.

    heise.de/news/Foxconn-Werke-in

    #Foxconn #IT #Malware #Security #Wirtschaft #news

    #foxconn #it #malware #security #wirtschaft #news
  32. Mac & i @[email protected] ·

    Foxconn-Werke in Nordamerika von Ransomware-Gruppe Nitrogen angegriffen

    Der Auftragsfertiger bestätigt den Cyberangriff. Nitrogen prahlt damit, 11 Millionen Dateien zu Apple, Nvidia und weiteren Kunden gestohlen haben.

    heise.de/news/Foxconn-Werke-in

    #Foxconn #IT #Malware #Security #Wirtschaft #news

    #foxconn #it #malware #security #wirtschaft #news
  33. Mac & i @[email protected] ·

    Foxconn-Werke in Nordamerika von Ransomware-Gruppe Nitrogen angegriffen

    Der Auftragsfertiger bestätigt den Cyberangriff. Nitrogen prahlt damit, 11 Millionen Dateien zu Apple, Nvidia und weiteren Kunden gestohlen haben.

    heise.de/news/Foxconn-Werke-in

    #Foxconn #IT #Malware #Security #Wirtschaft #news

    #foxconn #it #malware #security #wirtschaft #news
  34. Hackread.com @[email protected] ·

    📢⚠️ A new China-linked #TwillTyphoon hacking group is using fake Apple and Yahoo domains along with trusted #Windows tools to spy on organizations across Japan and the Asia-Pacific region.

    Read: hackread.com/chinatwill-typhoo

    #CyberSecurity #CyberAttack #Apple #Yahoo #Malware

    #twilltyphoon #windows #cybersecurity #cyberattack #apple #yahoo
  35. Hackread.com @Hackread ·

    📢⚠️ A new China-linked hacking group is using fake Apple and Yahoo domains along with trusted tools to spy on organizations across Japan and the Asia-Pacific region.

    Read: hackread.com/chinatwill-typhoo

    #twilltyphoon #windows #cybersecurity #cyberattack #apple #yahoo
  36. Hackread.com @[email protected] ·

    📢⚠️ A new China-linked #TwillTyphoon hacking group is using fake Apple and Yahoo domains along with trusted #Windows tools to spy on organizations across Japan and the Asia-Pacific region.

    Read: hackread.com/chinatwill-typhoo

    #CyberSecurity #CyberAttack #Apple #Yahoo #Malware

    #twilltyphoon #windows #cybersecurity #cyberattack #apple #yahoo
  37. Hackread.com @[email protected] ·

    📢⚠️ A new China-linked #TwillTyphoon hacking group is using fake Apple and Yahoo domains along with trusted #Windows tools to spy on organizations across Japan and the Asia-Pacific region.

    Read: hackread.com/chinatwill-typhoo

    #CyberSecurity #CyberAttack #Apple #Yahoo #Malware

    #malware #yahoo #apple #cyberattack #cybersecurity #windows
  38. Hackread.com @[email protected] ·

    📢⚠️ A new China-linked #TwillTyphoon hacking group is using fake Apple and Yahoo domains along with trusted #Windows tools to spy on organizations across Japan and the Asia-Pacific region.

    Read: hackread.com/chinatwill-typhoo

    #CyberSecurity #CyberAttack #Apple #Yahoo #Malware

    #twilltyphoon #windows #cybersecurity #cyberattack #apple #yahoo
  39. OTX Bot @[email protected] ·

    Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign

    A sophisticated campaign linked to APT37 delivers Python-based backdoors through spear-phishing emails containing malicious LNK files disguised as legitimate documents. Attackers use themes including airline e-tickets, North Korea research invitations, and impersonation of defense and police officials to induce execution. The LNK files employ environment variable-based obfuscation techniques to download additional BAT files, which establish a Python runtime environment and execute compiled Python bytecode disguised with .cat extensions. The malware functions as a remote command execution backdoor, communicating with C2 servers to receive commands and exfiltrate results. Persistence is maintained through scheduled tasks executing at one-minute intervals. The campaign shows strong tactical similarities to previous APT37 operations, including infrastructure patterns, script obfuscation methods, and the abuse of legitimate tools.

    Pulse ID: 6a04a9a090a64de310cb0568
    Pulse Link: otx.alienvault.com/pulse/6a04a
    Pulse Author: AlienVault
    Created: 2026-05-13 16:41:04

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT37 #BackDoor #CyberSecurity #Email #InfoSec #Korea #LNK #Malware #NorthKorea #OTX #OpenThreatExchange #Phishing #Python #RAT #RemoteCommandExecution #SpearPhishing #bot #AlienVault

    #apt37 #backdoor #cybersecurity #email #infosec #korea
  40. OTX Bot @[email protected] ·

    Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign

    A sophisticated campaign linked to APT37 delivers Python-based backdoors through spear-phishing emails containing malicious LNK files disguised as legitimate documents. Attackers use themes including airline e-tickets, North Korea research invitations, and impersonation of defense and police officials to induce execution. The LNK files employ environment variable-based obfuscation techniques to download additional BAT files, which establish a Python runtime environment and execute compiled Python bytecode disguised with .cat extensions. The malware functions as a remote command execution backdoor, communicating with C2 servers to receive commands and exfiltrate results. Persistence is maintained through scheduled tasks executing at one-minute intervals. The campaign shows strong tactical similarities to previous APT37 operations, including infrastructure patterns, script obfuscation methods, and the abuse of legitimate tools.

    Pulse ID: 6a04a9a090a64de310cb0568
    Pulse Link: otx.alienvault.com/pulse/6a04a
    Pulse Author: AlienVault
    Created: 2026-05-13 16:41:04

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT37 #BackDoor #CyberSecurity #Email #InfoSec #Korea #LNK #Malware #NorthKorea #OTX #OpenThreatExchange #Phishing #Python #RAT #RemoteCommandExecution #SpearPhishing #bot #AlienVault

    #apt37 #backdoor #cybersecurity #email #infosec #korea
  41. OTX Bot @[email protected] ·

    Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign

    A sophisticated campaign linked to APT37 delivers Python-based backdoors through spear-phishing emails containing malicious LNK files disguised as legitimate documents. Attackers use themes including airline e-tickets, North Korea research invitations, and impersonation of defense and police officials to induce execution. The LNK files employ environment variable-based obfuscation techniques to download additional BAT files, which establish a Python runtime environment and execute compiled Python bytecode disguised with .cat extensions. The malware functions as a remote command execution backdoor, communicating with C2 servers to receive commands and exfiltrate results. Persistence is maintained through scheduled tasks executing at one-minute intervals. The campaign shows strong tactical similarities to previous APT37 operations, including infrastructure patterns, script obfuscation methods, and the abuse of legitimate tools.

    Pulse ID: 6a04a9a090a64de310cb0568
    Pulse Link: otx.alienvault.com/pulse/6a04a
    Pulse Author: AlienVault
    Created: 2026-05-13 16:41:04

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT37 #BackDoor #CyberSecurity #Email #InfoSec #Korea #LNK #Malware #NorthKorea #OTX #OpenThreatExchange #Phishing #Python #RAT #RemoteCommandExecution #SpearPhishing #bot #AlienVault

    #apt37 #backdoor #cybersecurity #email #infosec #korea
  42. OTX Bot @[email protected] ·

    Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign

    A sophisticated campaign linked to APT37 delivers Python-based backdoors through spear-phishing emails containing malicious LNK files disguised as legitimate documents. Attackers use themes including airline e-tickets, North Korea research invitations, and impersonation of defense and police officials to induce execution. The LNK files employ environment variable-based obfuscation techniques to download additional BAT files, which establish a Python runtime environment and execute compiled Python bytecode disguised with .cat extensions. The malware functions as a remote command execution backdoor, communicating with C2 servers to receive commands and exfiltrate results. Persistence is maintained through scheduled tasks executing at one-minute intervals. The campaign shows strong tactical similarities to previous APT37 operations, including infrastructure patterns, script obfuscation methods, and the abuse of legitimate tools.

    Pulse ID: 6a04a9a090a64de310cb0568
    Pulse Link: otx.alienvault.com/pulse/6a04a
    Pulse Author: AlienVault
    Created: 2026-05-13 16:41:04

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT37 #BackDoor #CyberSecurity #Email #InfoSec #Korea #LNK #Malware #NorthKorea #OTX #OpenThreatExchange #Phishing #Python #RAT #RemoteCommandExecution #SpearPhishing #bot #AlienVault

    #alienvault #bot #spearphishing #remotecommandexecution #rat #python
  43. OTX Bot @[email protected] ·

    Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign

    A sophisticated campaign linked to APT37 delivers Python-based backdoors through spear-phishing emails containing malicious LNK files disguised as legitimate documents. Attackers use themes including airline e-tickets, North Korea research invitations, and impersonation of defense and police officials to induce execution. The LNK files employ environment variable-based obfuscation techniques to download additional BAT files, which establish a Python runtime environment and execute compiled Python bytecode disguised with .cat extensions. The malware functions as a remote command execution backdoor, communicating with C2 servers to receive commands and exfiltrate results. Persistence is maintained through scheduled tasks executing at one-minute intervals. The campaign shows strong tactical similarities to previous APT37 operations, including infrastructure patterns, script obfuscation methods, and the abuse of legitimate tools.

    Pulse ID: 6a04a9a090a64de310cb0568
    Pulse Link: otx.alienvault.com/pulse/6a04a
    Pulse Author: AlienVault
    Created: 2026-05-13 16:41:04

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT37 #BackDoor #CyberSecurity #Email #InfoSec #Korea #LNK #Malware #NorthKorea #OTX #OpenThreatExchange #Phishing #Python #RAT #RemoteCommandExecution #SpearPhishing #bot #AlienVault

    #apt37 #backdoor #cybersecurity #email #infosec #korea
  44. 🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓ @[email protected] ·

    The other day I was asked to help clean a wordpress installation that had unwanted visitors. It was a fun journey looking through the backdoor code and a wrote a small piece about it here:
    schulz.dk/2026/05/14/the-wordp
    WP is great for many things but so wide-spread that bad actors will try to find holes in it.
    #wordpress #infosec #security #malware @blog #blogpost #php #code #backdoor #walkthrough

    #wordpress #infosec #security #malware #blogpost #php
  45. 🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓ @[email protected] ·

    The other day I was asked to help clean a wordpress installation that had unwanted visitors. It was a fun journey looking through the backdoor code and a wrote a small piece about it here:
    schulz.dk/2026/05/14/the-wordp
    WP is great for many things but so wide-spread that bad actors will try to find holes in it.
    #wordpress #infosec #security #malware @blog #blogpost #php #code #backdoor #walkthrough

    #wordpress #infosec #security #malware #blogpost #php
  46. 🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓ @[email protected] ·

    The other day I was asked to help clean a wordpress installation that had unwanted visitors. It was a fun journey looking through the backdoor code and a wrote a small piece about it here:
    schulz.dk/2026/05/14/the-wordp
    WP is great for many things but so wide-spread that bad actors will try to find holes in it.
    #wordpress #infosec #security #malware @blog #blogpost #php #code #backdoor #walkthrough

    #wordpress #infosec #security #malware #blogpost #php
  47. 🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓ @[email protected] ·

    The other day I was asked to help clean a wordpress installation that had unwanted visitors. It was a fun journey looking through the backdoor code and a wrote a small piece about it here:
    schulz.dk/2026/05/14/the-wordp
    WP is great for many things but so wide-spread that bad actors will try to find holes in it.
    #wordpress #infosec #security #malware @blog #blogpost #php #code #backdoor #walkthrough

    #walkthrough #backdoor #code #php #blogpost #malware
  48. 🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓ @[email protected] ·

    The other day I was asked to help clean a wordpress installation that had unwanted visitors. It was a fun journey looking through the backdoor code and a wrote a small piece about it here:
    schulz.dk/2026/05/14/the-wordp
    WP is great for many things but so wide-spread that bad actors will try to find holes in it.
    #wordpress #infosec #security #malware @blog #blogpost #php #code #backdoor #walkthrough

    #wordpress #infosec #security #malware #blogpost #php
  49. Marcel SIneM(S)US @[email protected] ·

    Dobrindt: „Abschrecken, abwehren und abschalten“ in Kürze | heise online heise.de/news/Dobrindt-Abschre #CyberCrime #Hackback #hacking #Malware #DSA #DigitalServicesAct #Ransomware

    #cybercrime #hackback #hacking #malware #dsa #digitalservicesact
  50. PhishDestroy Alert @[email protected] ·

    🚨 PHISHING DETECTED 🚨

    🔗 Suspicious URL: www[.]darknetwiki[.]com
    🔍 Analysis at: phishdestroy.io/domain/www.dar

    #PhishingWarning #CyberFraud #malware #CryptoProtection #fake #DigitalFraud

    #phishingwarning #cyberfraud #malware #cryptoprotection #fake #digitalfraud