IEEE

Fileless Malware Threats: Evaluating Machine Learning Algorithms for Anomaly Detection

Abstract: Fileless malware is an advanced cybersecurity threat that utilizes trusted system modules to execute itself without leaving traces detectable by traditional antivirus software. Detecting ...
IEEE

Multimodal Windows Malware Detection via Hybrid Analysis and Enriched Graphs: Effectiveness ...

Abstract: The rapid spread of malware targeting the Windows operating system leads to an increasing and essential need to detect malicious Portable Executable (PE) files. Traditional approaches still ...
The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

A new campaign named GhostPoster has leveraged logo files associated with 17 Mozilla Firefox browser add-ons to embed malicious JavaScript code designed to hijack affiliate links, inject tracking code ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
Hacker

Automating Incident Response: How to Reduce Malware Forensics Time by 99% with Python and ...

Dippu is a strategic Data & Analytics leader and thought leader in emerging solutions, including Computer Vision and Generative AI/LLMs. Dippu is a strategic Data & Analytics leader and thought leader ...
The Hacker News

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Cybersecurity researchers have discovered two new extensions on Microsoft Visual Studio Code (VS Code) Marketplace that are designed to infect developer machines with stealer malware. The VS Code ...
Bleeping Computer

Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing malware that can take screenshots, steal credentials, crypto wallets, and ...
Engadget

Chinese hackers reportedly targeting government entities using 'Brickstorm' malware

Hackers with links to China reportedly successfully infiltrated a number of unnamed government and tech entities using advanced malware. As reported by Reuters, cybersecurity agencies from the US and ...
CSOonline

Chinese cyberspies target VMware vSphere for long-term persistence

CISA and the NSA warn that Chinese state-sponsored attackers are deploying malware dubbed BRICKSTORM on VMware servers to perform lateral movement inside victim networks. Chinese state-sponsored ...
Bleeping Computer

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned network defenders of Chinese hackers backdooring VMware vSphere servers with Brickstorm malware. In a joint malware analysis ...
Nextgov

China is using advanced ‘Brickstorm’ malware against government and IT orgs, US assesses

The NSA and the Cybersecurity and Infrastructure Security Agency have assessed that China is using an advanced malware family to access government agencies and technology companies, according to ...