AISEC > Security News > Malware

// MALWARE

// MALWARE

6 articles
All Zero-Day Ransomware Phishing Supply Chain AI Security Data Breaches Malware Vulnerabilities Attacks Security
2026-03-03 The Hacker News
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains

SloppyLemming threat group conducted active malware attacks against government entities and critical infrastructure in Pakistan and Bangladesh between January 2025-2026, utilizing two distinct attack chains delivering BurrowShell and a Rust-based malware. This represents a specific, ongoing hacking campaign targeting real government organizations with identified malware families.

2026-02-28 Krebs on Security
Who is the Kimwolf Botmaster “Dort”?

This article describes an actual active botnet threat (Kimwolf) and the threat actor behind it, including documented attacks (DDoS, doxing, email flooding, and swatting) against a security researcher and journalist. The piece investigates the identity of the botmaster 'Dort' who controls what is described as the world's largest botnet and has been conducting coordinated harassment and attacks.

2026-02-27 SecurityWeek
Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilience

Aeternum is an active botnet loader that uses Polygon blockchain smart contracts for its command-and-control infrastructure to evade disruption. This represents a real malware campaign employing novel techniques to maintain resilience against takedown efforts.

2026-02-27 The Hacker News
Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor

Security researchers disclosed a malicious Go module impersonating a legitimate crypto library that steals passwords, establishes persistent SSH access, and deploys the Rekoobe Linux backdoor. This represents an active supply chain attack threat targeting developers who might mistakenly use the malicious package.

2026-02-27 BleepingComputer
Europol-led crackdown on The Com hackers leads to 30 arrests

Europol-led operation 'Project Compass' resulted in 30 arrests and identified 179 suspects connected to 'The Com,' a cybercrime collective targeting minors. This represents an actual law enforcement action against a specific criminal organization engaged in cybercrime activities.

2026-02-26 The Hacker News
UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor

Cisco Talos identified an active malware campaign (UAT-10027) targeting U.S. education and healthcare sectors since December 2025, delivering a previously undocumented backdoor called Dohdoor that leverages DNS-over-HTTPS for command and control.