The Hacker News

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

Speagle malware exploits Cobra DocGuard servers to exfiltrate sensitive data, indicating targeted espionage risks for protected systems.
The Hacker News

KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet

KadNap botnet infects 14,000+ routers using DHT-based P2P control while ClipXDaemon hijacks crypto wallets on Linux X11.
CSOonline

How ‘perfctl’ malware infected Linux servers undetected for years

Exploiting a catalog of 20,000 misconfigurations to infect Linux servers, the cryptomining malware has gone largely undetected through use of process masquerading but appears capable of more. Security ...
Hosted on MSN

Windows Server flaw targeted by hackers to spread malware - here's what we know

Chinese state-sponsored actors are exploiting CVE-2025-59287, a critical WSUS flaw enabling unauthenticated RCE with SYSTEM privileges AhnLab reports attackers using PowerCat and certutil/curl to ...
CSOonline

Sophisticated VoidLink malware framework targets Linux cloud servers

Check Point researchers have discovered a modular malware framework likely designed by Chinese developers to harvest credentials for cloud environments. Researchers have uncovered a new sophisticated ...
Bleeping Computer

Police detains Smokeloader malware customers, seizes servers

In follow-up activity for Operation Endgame, law enforcement tracked down Smokeloader botnet’s customers and detained at least five individuals. During Operation Endgame last year, more than 100 ...
Hosted on MSN

Cybercriminals are targeting gamers with expired Discord invite links which redirect to malware servers - here's how to stay safe

Cybercriminals are recycling expired Discord links to launch silent, devastating multi-stage malware attacks A fake Discord bot tricks users into running PowerShell commands disguised as CAPTCHA fixes ...