The Hacker News

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

Speagle malware exploits Cobra DocGuard servers to exfiltrate sensitive data, indicating targeted espionage risks for protected systems.
Hosted on MSN

CISA releases malware analysis for Sharepoint Server attack

CISA has published a malware analysis report with compromise indicators and Sigma rules for "ToolShell" attacks targeting specific Microsoft SharePoint Server versions.… "Cyber threat actors have ...
The Hacker News

KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet

KadNap botnet infects 14,000+ routers using DHT-based P2P control while ClipXDaemon hijacks crypto wallets on Linux X11.
Bleeping Computer

MikroTik botnet uses misconfigured SPF DNS records to spread malware

A newly discovered botnet of 13,000 MikroTik devices uses a misconfiguration in domain name server records to bypass email protections and deliver malware by spoofing roughly 20,000 web domains. The ...
Hosted on MSN

Windows Server flaw targeted by hackers to spread malware - here's what we know

Chinese state-sponsored actors are exploiting CVE-2025-59287, a critical WSUS flaw enabling unauthenticated RCE with SYSTEM privileges AhnLab reports attackers using PowerCat and certutil/curl to ...
CSOonline

Sophisticated VoidLink malware framework targets Linux cloud servers

Check Point researchers have discovered a modular malware framework likely designed by Chinese developers to harvest credentials for cloud environments. Researchers have uncovered a new sophisticated ...