DeadLock ransomware hides using exploited Polygon smart contracts

Cybersecurity firm Group-IB found the DeadLock ransomware is exploiting Polygon smart contracts to create a resilient ...
CyberGuy

WhatsApp Web malware spreads banking trojan automatically

A new WhatsApp Web malware campaign spreads automatically, steals banking data, and targets Windows users through trusted ...
GitHub

Advanced Keylogger with Daily Log Rotation

A sophisticated, cross-platform keylogger written in Python with advanced features including AES-256 encryption, silent background operation, automatic startup/restart capabilities, and daily log ...
GitHub

Python script to decrypt aoe2campaign.gpv files, and two methods of extracting the AES keys to do so.

Currently as of AoE2DE update: Update 158041, only Memory Dump script 2 is working (titled Dump gpv keys, iv [Method 2] and dump decrypted campaigns ) Update 130746, only Memory Dump script 1 is ...
The Hacker News

Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia

The threat actor known as Transparent Tribe has been attributed to a fresh set of attacks targeting Indian governmental, academic, and strategic entities with a remote access trojan (RAT) that grants ...
CyberGuy

Most parked domains now push scams and malware

Typing a web address directly into your browser feels harmless. In fact, it feels normal. But new research shows that a simple habit is now one of the riskiest things you can do online. A recent study ...
The Hacker News

ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories

It's getting harder to tell where normal tech ends and malicious intent begins. Attackers are no longer just breaking in — they're blending in, hijacking everyday tools, trusted apps, and even AI ...