Tag: EN

VIPERTUNNEL Python Backdoor Hidden in Fake DLL, Obfuscated Loader Chain

Hackers are abusing a stealthy Python backdoor called VIPERTUNNEL, hiding it behind a fake DLL file and a multi‑stage obfuscated loader to quietly tunnel traffic out of victim networks. A review of persistence mechanisms revealed a sitecustomize.py file in C:\ProgramData\cp49s\Lib\. This special Python module…

Fake Claude Website Distributes PlugX RAT

The malware mimics the legitimate Anthropic installation, relies on DLL sideloading, and cleans up after itself. The post Fake Claude Website Distributes PlugX RAT appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Fake…

NHS pays £46K to prep next Microsoft licensing round

Benchmarking contract lays groundwork for renegotiating £774M software agreement NHS England is spending £46,000 on “benchmarking” as it gears up for what looks like the next round of negotiations behind one of the UK public sector’s biggest software deals.… This…

A week in security (April 6 – April 12)

A list of topics we covered in the week of April 6 to April 12 of 2026 The post A week in security (April 6 – April 12) appeared first on Security Boulevard. This article has been indexed from Security…

Operation Atlantic Seizes $12m in Crypto Losses

UK, US and Canadian authorities have identified over 20,000 victims of approval phishing scams that trick users into handing over full crypto wallet access This article has been indexed from www.infosecurity-magazine.com Read the original article: Operation Atlantic Seizes $12m in…

CPUID watering hole attack spreads STX RAT malware

Threat actors compromised the CPUID website and spread STX RAT through fake CPU-Z and HWMonitor downloads. Attackers breached the website CPUID and replaced download links for CPU-Z and HWMonitor with malicious files for several hours. Users who downloaded them got…

Apache Tomcat Flaws Enable EncryptInterceptor Bypass

The Apache Software Foundation has released critical security updates for Apache Tomcat to address three newly disclosed vulnerabilities. Because Apache Tomcat is a widely deployed open-source web server, these flaws pose a significant risk to many enterprise environments. The newly…

Adobe patches zero-day, Marimo flaw exploited, Venice flood threat

Adobe patches months-old Reader zero-day Critical Marimo flaw now under active exploitation Hackers claim control over Venice anti-flood pumps Get the show notes here: https://cisoseries.com/cybersecurity-news-adobe-patches-zero-day-marimo-flaw-exploited-venice-flood-threat/ Huge thanks to our sponsor, Conveyor Still manually filling out security questionnaires even though you…

Uber Delivery Robots Defaced In Sheffield

Autonomous robots making food deliveries for Uber Eats in Sheffield suburb defaced only days after initial rollout This article has been indexed from Silicon UK Read the original article: Uber Delivery Robots Defaced In Sheffield