맬웨어
Researchers discover SSHStalker botnet infecting Linux servers
AI에 의해 보고됨 AI에 의해 생성된 이미지
Flare researchers have identified a new Linux botnet called SSHStalker that has compromised around 7,000 systems using outdated exploits and SSH scanning. The botnet employs IRC for command-and-control while maintaining dormant persistence without immediate malicious activities like DDoS or cryptomining. It targets legacy Linux kernels, highlighting risks in neglected infrastructure.
The popular AUR helper yay released version 13 on June 18 with new tools to help users detect risky packages. The update follows multiple waves of malware that compromised over 1,500 packages in the Arch User Repository.
AI에 의해 보고됨
Arch Linux has disabled new account registrations for the Arch User Repository following multiple waves of malicious package updates. The move comes after more than 1,500 packages were compromised last week.
Law enforcement agencies from the United States and Europe, supported by private partners, have taken down the SocksEscort cybercrime proxy network. This service, powered by the AVRecon malware infecting Linux-based devices, provided cybercriminals with access to compromised IP addresses. The operation resulted in the seizure of domains, servers, and cryptocurrency assets.
AI에 의해 보고됨
Researchers at Black Lotus Labs have identified a botnet infecting around 14,000 routers daily, mostly Asus models in the US, using advanced peer-to-peer technology to evade detection. The malware, known as KadNap, turns these devices into proxies for cybercrime activities. Infected users are advised to factory reset their routers and apply firmware updates to remove the threat.
A North Korean hacking group known as UNC1069 has employed AI-generated videos to deliver malware targeting both macOS and Windows systems. This tactic highlights evolving methods in cyber threats. The development was reported by TechRadar on February 11, 2026.
AI에 의해 보고됨
Cyble Research and Intelligence Labs has revealed ShadowHS, a sophisticated fileless framework for post-exploitation on Linux systems. The tool enables stealthy, in-memory operations and long-term access for attackers. It features a weaponized version of hackshell and advanced evasion techniques.
Malware infects 1579 packages in Arch Linux AUR
2026년 05월 25일 20시 59분Trapdoor malware targets crypto and ai developers
2026년 05월 12일 15시 32분Android malware returns disguised as TikTok or streaming apps
2026년 05월 12일 07시 58분Scammers expand Claude malware campaign to target Mac users via ads and fake support sites
2026년 05월 11일 06시 22분Fake OpenAI repository tops Hugging Face downloads
2026년 02월 23일 08시 01분Malicious npm packages harvest crypto keys and secrets
2026년 02월 20일 10시 04분Massiv android malware targets portuguese users with fake iptv app
2026년 02월 19일 13시 36분Researchers uncover new SysUpdate malware variant targeting Linux
2026년 02월 18일 23시 37분New SysUpdate malware variant targets Linux systems
2026년 02월 17일 10시 18분OpenClaw AI agents targeted by infostealer malware for first time