Malware

Security researchers have detailed the evolving tactics of the Russian-affiliated threat group Gamaredon, particularly its use of the PteroLNK variant within the Pterodo malware family, GBHackers reports.

A fake version of the Alpine Quest app was used to discreetly spy on Russian military Android devices by harvesting personal data and geolocation details, Hack Read reports.

Threat actors are getting more work from the private sector than from government sponsored agencies.

Researchers advise security teams to block sources of bulletproof hosting.

Cybernews reports that dark web marketplace Nemesis Market had its founder Behrouz Parsarad indicted by the U.S.

Alleged SmokeLoader botnet operator Nicholas Moses, also known as "scrublord", has been charged by federal prosecutors with a count of conspiracy to commit fraud and other computer-related activity over the compromise of more than 65,000 individuals' personal data and credentials with the malware, reports The Record, a news site by cybersecurity firm Recorded Future.

Android devices have been targeted with the new SuperCard X malware-as-a-service platform to pilfer funds from payment cards as part of a new scam that also involves social engineering and NFC exploitation, according to The Record, a news site by cybersecurity firm Recorded Future.

Distributed denial-of-service malware XorDDoS has been enhanced with a more advanced controller as it continued to proliferate around the world from November 2023 to February 2025, according to Cyber Security News.