VoidLink Malware Targets Linux Clouds
Read More: buff.ly/Zy0YCOa
#VoidLink #LinuxMalware #CloudSecurity #KubernetesSecurity #ContainerSecurity #CloudNativeThreats #EDR #LinuxInfosec #ThreatResearch #AdvancedMalware
Read More: buff.ly/Zy0YCOa
#VoidLink #LinuxMalware #CloudSecurity #KubernetesSecurity #ContainerSecurity #CloudNativeThreats #EDR #LinuxInfosec #ThreatResearch #AdvancedMalware
January 15, 2026 at 5:00 PM
VoidLink Malware Targets Linux Clouds
Read More: buff.ly/Zy0YCOa
#VoidLink #LinuxMalware #CloudSecurity #KubernetesSecurity #ContainerSecurity #CloudNativeThreats #EDR #LinuxInfosec #ThreatResearch #AdvancedMalware
Read More: buff.ly/Zy0YCOa
#VoidLink #LinuxMalware #CloudSecurity #KubernetesSecurity #ContainerSecurity #CloudNativeThreats #EDR #LinuxInfosec #ThreatResearch #AdvancedMalware
Full Article: www.technadu.com/ransomware-a...
Do these findings match what you’re seeing in the threat landscape? Comment below.
#CyberSecurity #Ransomware #ThreatResearch #Infosec #DataProtection
Do these findings match what you’re seeing in the threat landscape? Comment below.
#CyberSecurity #Ransomware #ThreatResearch #Infosec #DataProtection
Ransomware Attacks Surged 58% in 2025, New Report Finds
Key findings from the GRIT 2026 Ransomware & Cyber Threat Report show a record-breaking year for ransomware attacks, with Qilin and Akira leading the charge.
www.technadu.com
January 15, 2026 at 1:51 PM
Full Article: www.technadu.com/ransomware-a...
Do these findings match what you’re seeing in the threat landscape? Comment below.
#CyberSecurity #Ransomware #ThreatResearch #Infosec #DataProtection
Do these findings match what you’re seeing in the threat landscape? Comment below.
#CyberSecurity #Ransomware #ThreatResearch #Infosec #DataProtection
Full Article: www.technadu.com/sicarii-rans...
Do you see deceptive branding becoming more common in ransomware campaigns? Comment below.
#Cybersecurity #Ransomware #ThreatResearch #Infosec #CyberCrime
Do you see deceptive branding becoming more common in ransomware campaigns? Comment below.
#Cybersecurity #Ransomware #ThreatResearch #Infosec #CyberCrime
Sicarii Ransomware: A Deceptive New Ransomware-as-a-Service Threat Using Hebrew Iconography
Discover the truth behind Sicarii ransomware, a RaaS threat with Israeli branding, advanced data exfiltration capabilities, and destructive payloads.
www.technadu.com
January 15, 2026 at 1:05 PM
Full Article: www.technadu.com/sicarii-rans...
Do you see deceptive branding becoming more common in ransomware campaigns? Comment below.
#Cybersecurity #Ransomware #ThreatResearch #Infosec #CyberCrime
Do you see deceptive branding becoming more common in ransomware campaigns? Comment below.
#Cybersecurity #Ransomware #ThreatResearch #Infosec #CyberCrime
Abusing ClickOnce as an initial access primitive. No exploit. No macro. Just a user click and trusted execution via dfsvc.exe.
blackcastle.com.au/blog/clickon...
#ClickOnce #InitialAccess #OffensiveSecurity #ThreatResearch #MalwareAnalysis #RedTeam #WindowsSecurity
blackcastle.com.au/blog/clickon...
#ClickOnce #InitialAccess #OffensiveSecurity #ThreatResearch #MalwareAnalysis #RedTeam #WindowsSecurity
Abusing Microsoft ClickOnce as an Initial Access Primitive
How ClickOnce deployment flows become a low-noise payload delivery channel inside trusted Windows execution paths.
blackcastle.com.au
January 15, 2026 at 8:28 AM
Abusing ClickOnce as an initial access primitive. No exploit. No macro. Just a user click and trusted execution via dfsvc.exe.
blackcastle.com.au/blog/clickon...
#ClickOnce #InitialAccess #OffensiveSecurity #ThreatResearch #MalwareAnalysis #RedTeam #WindowsSecurity
blackcastle.com.au/blog/clickon...
#ClickOnce #InitialAccess #OffensiveSecurity #ThreatResearch #MalwareAnalysis #RedTeam #WindowsSecurity
Researchers Expose Pig Butchering Networks
Read More: buff.ly/SNcceUn
#PigButcheringScams #InvestmentFraud #ScamInfrastructure #CyberCrimeEcosystem #OnlineFraud #ThreatResearch #FinancialScams #DigitalDeception
Read More: buff.ly/SNcceUn
#PigButcheringScams #InvestmentFraud #ScamInfrastructure #CyberCrimeEcosystem #OnlineFraud #ThreatResearch #FinancialScams #DigitalDeception
January 12, 2026 at 6:00 PM
Researchers Expose Pig Butchering Networks
Read More: buff.ly/SNcceUn
#PigButcheringScams #InvestmentFraud #ScamInfrastructure #CyberCrimeEcosystem #OnlineFraud #ThreatResearch #FinancialScams #DigitalDeception
Read More: buff.ly/SNcceUn
#PigButcheringScams #InvestmentFraud #ScamInfrastructure #CyberCrimeEcosystem #OnlineFraud #ThreatResearch #FinancialScams #DigitalDeception
We are less than a month away from #PIVOTcon26 #CfP deadline,come present your best research in a trusted,vetted environment attended by some of the best researchers. We created such an environment so that we can feel safe to exchange beyond the blogposts #CTI #ThreatResearch #ThreatIntel #MemeGuide
You asked for our traditional #CfP meme-guideline for #PIVOTcon26 - here it is 🥳🎉
Reminder:
- one track,30m
- no recording/streaming/tweeting.
- No TLP:WHITE
- Original content only
#CTI #ThreatIntel #ThreatResearch 1/7
Reminder:
- one track,30m
- no recording/streaming/tweeting.
- No TLP:WHITE
- Original content only
#CTI #ThreatIntel #ThreatResearch 1/7
January 12, 2026 at 3:20 PM
We are less than a month away from #PIVOTcon26 #CfP deadline,come present your best research in a trusted,vetted environment attended by some of the best researchers. We created such an environment so that we can feel safe to exchange beyond the blogposts #CTI #ThreatResearch #ThreatIntel #MemeGuide
Researchers describe a spear-phishing campaign using malicious documents to deploy a Rust-based RAT across several Middle East sectors.
Rather than dramatic techniques, this campaign shows:
• Familiar delivery methods
• Quiet malware evolution...
#CyberSecurity #ThreatResearch #RustMalware #InfoSec
Rather than dramatic techniques, this campaign shows:
• Familiar delivery methods
• Quiet malware evolution...
#CyberSecurity #ThreatResearch #RustMalware #InfoSec
January 12, 2026 at 9:12 AM
Researchers describe a spear-phishing campaign using malicious documents to deploy a Rust-based RAT across several Middle East sectors.
Rather than dramatic techniques, this campaign shows:
• Familiar delivery methods
• Quiet malware evolution...
#CyberSecurity #ThreatResearch #RustMalware #InfoSec
Rather than dramatic techniques, this campaign shows:
• Familiar delivery methods
• Quiet malware evolution...
#CyberSecurity #ThreatResearch #RustMalware #InfoSec
🔗https://malwr-analysis.com/2026/01/11/fake-fast-ray-vpn-site-on-cloudflare-pages-leading-to-pua-downloads/
#infosec #threatresearch #cybersecurity #malwareanalysis #PUA
#infosec #threatresearch #cybersecurity #malwareanalysis #PUA
January 11, 2026 at 5:45 PM
🔗https://malwr-analysis.com/2026/01/11/fake-fast-ray-vpn-site-on-cloudflare-pages-leading-to-pua-downloads/
#infosec #threatresearch #cybersecurity #malwareanalysis #PUA
#infosec #threatresearch #cybersecurity #malwareanalysis #PUA
Interesting threat research find: a fake “Fast Ray VPN” site on Cloudflare Pages that’s been live for months and appears in Google search results. The download links route users through redirects that may deliver PUA, push affiliate installers, or send users to ad pages. #threatresearch
January 11, 2026 at 5:45 PM
Interesting threat research find: a fake “Fast Ray VPN” site on Cloudflare Pages that’s been live for months and appears in Google search results. The download links route users through redirects that may deliver PUA, push affiliate installers, or send users to ad pages. #threatresearch
Full analysis:
www.technadu.com/aisuru-and-k...
What should manufacturers and proxy providers be held responsible for? Comment below.
#CyberSecurity #IoT #Botnet #AndroidTV #DDoS #ThreatResearch
www.technadu.com/aisuru-and-k...
What should manufacturers and proxy providers be held responsible for? Comment below.
#CyberSecurity #IoT #Botnet #AndroidTV #DDoS #ThreatResearch
Aisuru and Kimwolf Botnets Operational Mechanics: Uncovering the Beneficiaries
New analysis links the Aisuru and Kimwolf botnets to residential proxy malware schemes, compromising millions of Android TV devices for DDoS and fraud.
www.technadu.com
January 9, 2026 at 2:46 PM
Full analysis:
www.technadu.com/aisuru-and-k...
What should manufacturers and proxy providers be held responsible for? Comment below.
#CyberSecurity #IoT #Botnet #AndroidTV #DDoS #ThreatResearch
www.technadu.com/aisuru-and-k...
What should manufacturers and proxy providers be held responsible for? Comment below.
#CyberSecurity #IoT #Botnet #AndroidTV #DDoS #ThreatResearch
Over 2 million Android TV boxes silently hijacked.
Kimwolf botnet (linked to Aisuru) turns cheap streaming devices into DDoS tools and residential proxy nodes sold to third parties.
#CyberSecurity #Botnet #IoT #ThreatResearch
Kimwolf botnet (linked to Aisuru) turns cheap streaming devices into DDoS tools and residential proxy nodes sold to third parties.
#CyberSecurity #Botnet #IoT #ThreatResearch
January 9, 2026 at 2:46 PM
Over 2 million Android TV boxes silently hijacked.
Kimwolf botnet (linked to Aisuru) turns cheap streaming devices into DDoS tools and residential proxy nodes sold to third parties.
#CyberSecurity #Botnet #IoT #ThreatResearch
Kimwolf botnet (linked to Aisuru) turns cheap streaming devices into DDoS tools and residential proxy nodes sold to third parties.
#CyberSecurity #Botnet #IoT #ThreatResearch
Ransomware operations today depend on ecosystems, insider misuse, and long-term access.
Aurora Johnson, Manager of Security Research & Partnerships at SpyCloud, explains why identity-driven exploitation is becoming central to cybercrime.
#Cybersecurity #InsiderThreats #ThreatResearch #SpyCloud
Aurora Johnson, Manager of Security Research & Partnerships at SpyCloud, explains why identity-driven exploitation is becoming central to cybercrime.
#Cybersecurity #InsiderThreats #ThreatResearch #SpyCloud
January 7, 2026 at 3:56 PM
Ransomware operations today depend on ecosystems, insider misuse, and long-term access.
Aurora Johnson, Manager of Security Research & Partnerships at SpyCloud, explains why identity-driven exploitation is becoming central to cybercrime.
#Cybersecurity #InsiderThreats #ThreatResearch #SpyCloud
Aurora Johnson, Manager of Security Research & Partnerships at SpyCloud, explains why identity-driven exploitation is becoming central to cybercrime.
#Cybersecurity #InsiderThreats #ThreatResearch #SpyCloud
Source: www.technadu.com/free-clickfi...
How should organizations adapt security training and detection to address this kind of attack?
#CyberSecurity #SocialEngineering #ThreatResearch #Malware
How should organizations adapt security training and detection to address this kind of attack?
#CyberSecurity #SocialEngineering #ThreatResearch #Malware
Free ‘ClickFix Hunter’ Tool Tracks Growing Social Engineering Epidemic
ClickFix Hunter helps track the ClickFix social engineering epidemic by identifying malicious clipboard commands and protecting users.
www.technadu.com
January 7, 2026 at 10:46 AM
Source: www.technadu.com/free-clickfi...
How should organizations adapt security training and detection to address this kind of attack?
#CyberSecurity #SocialEngineering #ThreatResearch #Malware
How should organizations adapt security training and detection to address this kind of attack?
#CyberSecurity #SocialEngineering #ThreatResearch #Malware
VS Code Forks Expose Open VSX Risks
Read More: buff.ly/rutSsMr
#OpenVSX #VSCodeForks #DeveloperSecurity #SupplyChainRisk #MaliciousExtensions #AppSec #DevSecOps #ThreatResearch
Read More: buff.ly/rutSsMr
#OpenVSX #VSCodeForks #DeveloperSecurity #SupplyChainRisk #MaliciousExtensions #AppSec #DevSecOps #ThreatResearch
January 6, 2026 at 4:00 PM
VS Code Forks Expose Open VSX Risks
Read More: buff.ly/rutSsMr
#OpenVSX #VSCodeForks #DeveloperSecurity #SupplyChainRisk #MaliciousExtensions #AppSec #DevSecOps #ThreatResearch
Read More: buff.ly/rutSsMr
#OpenVSX #VSCodeForks #DeveloperSecurity #SupplyChainRisk #MaliciousExtensions #AppSec #DevSecOps #ThreatResearch
Researchers report ongoing growth of the Kimwolf Android botnet, largely tied to insecure Android TV devices and residential networks.
A reminder that everyday hardware can become part of large-scale abuse when security is an afterthought.
#AndroidSecurity #Botnets #IoT #CyberRisk #ThreatResearch
A reminder that everyday hardware can become part of large-scale abuse when security is an afterthought.
#AndroidSecurity #Botnets #IoT #CyberRisk #ThreatResearch
January 6, 2026 at 11:36 AM
Researchers report ongoing growth of the Kimwolf Android botnet, largely tied to insecure Android TV devices and residential networks.
A reminder that everyday hardware can become part of large-scale abuse when security is an afterthought.
#AndroidSecurity #Botnets #IoT #CyberRisk #ThreatResearch
A reminder that everyday hardware can become part of large-scale abuse when security is an afterthought.
#AndroidSecurity #Botnets #IoT #CyberRisk #ThreatResearch
RondoDox Botnet Hijacks IoT Systems
Read More: buff.ly/g86SB9R
#RondoDox #IoTBotnet #React2Shell #RCE #BotnetCampaign #CryptoMiningMalware #WebServerSecurity #ThreatResearch
Read More: buff.ly/g86SB9R
#RondoDox #IoTBotnet #React2Shell #RCE #BotnetCampaign #CryptoMiningMalware #WebServerSecurity #ThreatResearch
January 5, 2026 at 4:00 PM
RondoDox Botnet Hijacks IoT Systems
Read More: buff.ly/g86SB9R
#RondoDox #IoTBotnet #React2Shell #RCE #BotnetCampaign #CryptoMiningMalware #WebServerSecurity #ThreatResearch
Read More: buff.ly/g86SB9R
#RondoDox #IoTBotnet #React2Shell #RCE #BotnetCampaign #CryptoMiningMalware #WebServerSecurity #ThreatResearch
The Kimwolf botnet highlights a growing issue: consumer IoT devices and residential proxies being abused to reach internal networks many assume are safe.
Researchers say millions of devices are affected, often due to weak defaults and lack of authentication.
#CyberSecurity #Botnets #ThreatResearch
Researchers say millions of devices are affected, often due to weak defaults and lack of authentication.
#CyberSecurity #Botnets #ThreatResearch
January 3, 2026 at 1:07 PM
The Kimwolf botnet highlights a growing issue: consumer IoT devices and residential proxies being abused to reach internal networks many assume are safe.
Researchers say millions of devices are affected, often due to weak defaults and lack of authentication.
#CyberSecurity #Botnets #ThreatResearch
Researchers say millions of devices are affected, often due to weak defaults and lack of authentication.
#CyberSecurity #Botnets #ThreatResearch
Zoom Stealer Extensions Harvest Meetings
Read More: buff.ly/U1mv1R1
#ZoomStealer #MaliciousExtensions #BrowserSecurity #CredentialHarvesting #ChinaLinkedAPT #DarkSpectre #ThreatResearch #AccountSecurity
Read More: buff.ly/U1mv1R1
#ZoomStealer #MaliciousExtensions #BrowserSecurity #CredentialHarvesting #ChinaLinkedAPT #DarkSpectre #ThreatResearch #AccountSecurity
January 2, 2026 at 4:00 PM
Zoom Stealer Extensions Harvest Meetings
Read More: buff.ly/U1mv1R1
#ZoomStealer #MaliciousExtensions #BrowserSecurity #CredentialHarvesting #ChinaLinkedAPT #DarkSpectre #ThreatResearch #AccountSecurity
Read More: buff.ly/U1mv1R1
#ZoomStealer #MaliciousExtensions #BrowserSecurity #CredentialHarvesting #ChinaLinkedAPT #DarkSpectre #ThreatResearch #AccountSecurity
Researchers link several long-running browser extension campaigns to a single actor, DarkSpectre, affecting ~8.8M users across major browsers.
Key issue: extensions that look legitimate can stay dormant for years before activating malware...
#CyberSecurity #BrowserRisk #ThreatResearch #TechNadu
Key issue: extensions that look legitimate can stay dormant for years before activating malware...
#CyberSecurity #BrowserRisk #ThreatResearch #TechNadu
January 2, 2026 at 3:38 PM
Researchers link several long-running browser extension campaigns to a single actor, DarkSpectre, affecting ~8.8M users across major browsers.
Key issue: extensions that look legitimate can stay dormant for years before activating malware...
#CyberSecurity #BrowserRisk #ThreatResearch #TechNadu
Key issue: extensions that look legitimate can stay dormant for years before activating malware...
#CyberSecurity #BrowserRisk #ThreatResearch #TechNadu
Full Article: www.technadu.com/errtraffic-c...
💬 Do you think traditional endpoint defenses can keep up with ClickFix-style attacks? Comment your opinion.
#CyberSecurity #Malware #SocialEngineering #ThreatResearch #ClickFix #Infostealer #CyberThreats
💬 Do you think traditional endpoint defenses can keep up with ClickFix-style attacks? Comment your opinion.
#CyberSecurity #Malware #SocialEngineering #ThreatResearch #ClickFix #Infostealer #CyberThreats
ErrTraffic ClickFix Tool Industrializes Social Engineering Malware, Delivers Fake Website Glitches
The ErrTraffic ClickFix tool emerged, offering high conversion rates and cross-platform targeting via fake glitches that deliver infostealers and trojans.
www.technadu.com
January 2, 2026 at 11:39 AM
Full Article: www.technadu.com/errtraffic-c...
💬 Do you think traditional endpoint defenses can keep up with ClickFix-style attacks? Comment your opinion.
#CyberSecurity #Malware #SocialEngineering #ThreatResearch #ClickFix #Infostealer #CyberThreats
💬 Do you think traditional endpoint defenses can keep up with ClickFix-style attacks? Comment your opinion.
#CyberSecurity #Malware #SocialEngineering #ThreatResearch #ClickFix #Infostealer #CyberThreats
27 Malicious Npm Phishing Packages Steal
Rad More: buff.ly/TNtJ2id
#NPMSupplyChain #MaliciousPackages #PhishingCampaign #DeveloperSecurity #OpenSourceAbuse #CredentialTheft #CriticalInfrastructure #ThreatResearch
Rad More: buff.ly/TNtJ2id
#NPMSupplyChain #MaliciousPackages #PhishingCampaign #DeveloperSecurity #OpenSourceAbuse #CredentialTheft #CriticalInfrastructure #ThreatResearch
December 31, 2025 at 5:00 PM
27 Malicious Npm Phishing Packages Steal
Rad More: buff.ly/TNtJ2id
#NPMSupplyChain #MaliciousPackages #PhishingCampaign #DeveloperSecurity #OpenSourceAbuse #CredentialTheft #CriticalInfrastructure #ThreatResearch
Rad More: buff.ly/TNtJ2id
#NPMSupplyChain #MaliciousPackages #PhishingCampaign #DeveloperSecurity #OpenSourceAbuse #CredentialTheft #CriticalInfrastructure #ThreatResearch
Security officials have flagged a spear-phishing campaign using WhatsApp messages disguised as professional conference invites.
Shortened URLs redirect to fake sites designed to collect sensitive information...
#CyberSecurity #Phishing #ThreatResearch #InfoSec #DigitalDefense
Shortened URLs redirect to fake sites designed to collect sensitive information...
#CyberSecurity #Phishing #ThreatResearch #InfoSec #DigitalDefense
December 31, 2025 at 7:33 AM
Security officials have flagged a spear-phishing campaign using WhatsApp messages disguised as professional conference invites.
Shortened URLs redirect to fake sites designed to collect sensitive information...
#CyberSecurity #Phishing #ThreatResearch #InfoSec #DigitalDefense
Shortened URLs redirect to fake sites designed to collect sensitive information...
#CyberSecurity #Phishing #ThreatResearch #InfoSec #DigitalDefense
Nomani Investment Scam Rises Using AI
Read More: buff.ly/OZyBEkf
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
Read More: buff.ly/OZyBEkf
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
December 30, 2025 at 5:30 PM
Nomani Investment Scam Rises Using AI
Read More: buff.ly/OZyBEkf
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
Read More: buff.ly/OZyBEkf
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
Full technical details and analysis:
www.technadu.com/honeymyte-ap...
What does this say about the future of endpoint defense? Comment below.
#CyberEspionage #APT #Malware #ThreatResearch #CyberSecurity
www.technadu.com/honeymyte-ap...
What does this say about the future of endpoint defense? Comment below.
#CyberEspionage #APT #Malware #ThreatResearch #CyberSecurity
www.technadu.com
December 29, 2025 at 2:38 PM
Full technical details and analysis:
www.technadu.com/honeymyte-ap...
What does this say about the future of endpoint defense? Comment below.
#CyberEspionage #APT #Malware #ThreatResearch #CyberSecurity
www.technadu.com/honeymyte-ap...
What does this say about the future of endpoint defense? Comment below.
#CyberEspionage #APT #Malware #ThreatResearch #CyberSecurity
New Macsync Malware Bypasses Macos
Read More: buff.ly/VugqKTX
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
Read More: buff.ly/VugqKTX
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
December 26, 2025 at 3:00 PM
New Macsync Malware Bypasses Macos
Read More: buff.ly/VugqKTX
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity
Read More: buff.ly/VugqKTX
#MacSyncMalware #macOSMalware #AppleGatekeeper #CodeSignedMalware #SwiftMalware #macOSSecurity #EndpointSecurity #ThreatResearch #AppleSecurity