'Hundreds of thousands of stolen secrets could potentially be circulating as a result of these recent attacks': Google says North Korean hackers behind major attack on Axi…

Google Threat Intelligence Group warns of active supply chain attack on npm’s Axios library Malicious dependency ...
IEEE

A Self-Supervised Contrastive Learning-Based Method for Portable Executable Malware Classification

Abstract: Malicious software presents significant risks to computer systems, networks, and sensitive data, making malware detection a critical cybersecurity challenge. Labeling malware data not only ...
The Hacker News

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various encrypted remote access trojan (RATs) payloads that ...
Dark Reading

Attackers Use Windows Screensavers to Drop Malware, RMM Tools

In a novel approach to spear phishing, threat actors are using Windows screensaver files (.scr) to get past defender lines and compromise organizations. ReliaQuest Threat Research published research ...
GitHub

RAW-RPL DMS Tools

For Windows, RAW-RPL DMS Tools is available as a portable, no-install executable that runs directly by double-clicking or running from the command prompt: Download the latest Windows version under raw ...
IEEE

Implementation of Portable Executable File Analysis Framework (PEFAF)

Abstract: The Portable executable file format is the format of executables, object code and DLL's (Dynamic Link Library) in Microsoft Windows Operating system. It is the standard of how executable ...
Microsoft

Dissecting PipeMagic: Inside the architecture of a modular backdoor framework

Among the plethora of advanced attacker tools that exemplify how threat actors continuously evolve their tactics, techniques, and procedures (TTPs) to evade detection and maximize impact, PipeMagic, a ...
The Hacker News

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

Cybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet. The DOS (Disk Operating ...