Tag: android-malware

Critical n8n RCE Hits KEV Catalog While Attackers Weaponize SOC Fatigue and Target Developers

CISA added a critical n8n workflow automation RCE vulnerability to the KEV catalog following active exploitation, while researchers reveal how attackers deliberately overwhelm SOC analysts and target developers through fake job interviews.

Mar 12, 2026The Hacker News, Microsoft Security, SANS ISC, MSRC Security Updates

cisa-kevremote-code-executionandroid-malware

🏴Royal

🇺🇸Apple🇺🇸Meta Platforms

highMalware & Threats

Malware Roundup: BlackSanta EDR Killer, BeatBanker Android Trojan, and Zombie ZIP Evasion

Security researchers identified multiple new malware threats including the BlackSanta EDR killer used by Russian actors against HR departments for over a year, BeatBanker Android malware posing as Starlink apps, and the Zombie ZIP technique for evading security tools. Meanwhile, Iranian MOIS actors are increasingly adopting cybercrime tools and infrastructure.

Mar 11, 2026BleepingComputer, Graham Cluley, Cisco Talos, Checkpoint Research, Malwarebytes Labs

edr-evasionandroid-malwarebotnets

🏴Play

🇺🇸X Corp🇺🇸Google

criticalMalware & Threats

Malware Threats Weekly: CISA Flags Ivanti EPM Zero-Day, APT28 Leverages Covenant Framework, Meta Ad Network Powers Global Scam Operations

CISA ordered federal agencies to patch an actively exploited Ivanti Endpoint Manager vulnerability within three weeks. Russian APT28 operators are using customized Covenant framework tools for espionage, while a massive investment fraud network leveraging Meta advertising platforms has been discovered operating across 25 countries.

Mar 10, 2026BleepingComputer, Checkpoint Research, Malwarebytes Labs, SecureList (Kaspersky), Bitdefender Labs

apt28ivanticisa-kev

🏴ShinyHunters🇷🇺APT28🏴Play

🇺🇸Meta Platforms🇺🇸Google

mediumData Breaches & Incidents

Weekly Security Digest: AI-Assisted Attacks, Android Banking Trojans, and Model Distillation Abuse

Security teams face AI-enhanced threat landscape as attackers use machine learning tools to scale FortiGate compromises and Android banking malware targets Samsung/Xiaomi users. Chinese AI firms accused of model distillation abuse against Anthropic's Claude.

Feb 25, 2026Hackread

android-malwareai-securityfortigate

🇰🇷Samsung🇺🇸Amazon🇨🇳Xiaomi

highVulnerabilities & Exploits

Vulnerability Intelligence: AI Exploit Acceleration, Android Banking Trojans, and Mass CVE Disclosures

AI tools collapse exploitation windows, new Android banking trojans target IPTV users, Iran protest surveillance campaigns emerge, while Microsoft publishes 100+ CVE disclosures spanning Chrome,...

Feb 19, 2026The Hacker News, Qualys, SANS ISC, MSRC Security Updates

vulnerability-disclosureandroid-malwareai-exploitation

highIndustry & Policy

Supply Chain Malware, Nation-State Attacks, and Living-Off-the-Land Techniques Dominate Threat Landscape

Week brings supply chain Android malware, Russian attacks on Polish energy, RMM tool abuse surge, evolved ClickFix campaigns, and Singapore's successful defense against Chinese hackers.

Feb 18, 2026Dark Reading

supply-chainnation-stateandroid-malware

highMalware & Threats

Threat Roundup: Phobos Ransomware Arrest, X/Grok Investigation, IoT Security Mishap, and Android Backdoor Discovery

Polish authorities arrest Phobos ransomware suspect, Ireland investigates X's Grok AI abuse, accidental IoT exposure, and new Android backdoor links major botnets.

Feb 17, 2026BleepingComputer, Malwarebytes Labs, SecureList (Kaspersky)

ransomwarephobosandroid-malware

🏴Phobos

🇺🇸Google