Technology ❯ Cybersecurity ❯ Malware

Backdoors

BRICKSTORM AquaShell XZ Utils SparrowDoor SSH Backdoor Non-Volatile Memory ShadowPad and DarkNimbus NVRAM Backdoor OVERSTEP Remote Access Trojans Remote Code Execution RustyClaw ToolShell NotDoor Overstep Linux PDF Editors Chrysalis SoundBill Yokai SNAPPYBEE MAYBEROBOT SNAPPYBEE (Deed RAT) VSOCK Communication SesameOp SlowStepper NANOREMOTE ToneShell ModeloRAT XZ-Utils Backdoor Dohdoor Reconnaissance Tools

Cisco Talos Exposes ‘Dohdoor’ Backdoor Using DNS-over-HTTPS in U.S. Education and Healthcare Attacks

Talos says the implant hides its command traffic behind Cloudflare to evade DNS-based detection.

Dell Patches RecoverPoint Zero-Day Exploited Since 2024 by Suspected China Group

Cisco Talos Unmasks 'DKnife' AitM Framework Tied to China Since 2019

Huntress Uncovers 'CrashFix' Browser Extension That Crashes Chrome to Push ModeloRAT

Cisco Releases Fix for AsyncOS Zero-Day Exploited on Secure Email Appliances

Huntress Uncovers Pre-Disclosure ESXi VM-Escape Toolkit Used in December Intrusion

Kaspersky: Mustang Panda Uses Signed Kernel-Mode Rootkit to Stealth-Load ToneShell

China-Linked Hackers Exploit Cisco Email Zero-Day With No Patch as CISA Flags Active Threat

U.S. and Canada Warn of China-Linked ‘BRICKSTORM’ Backdoor Targeting VMware

ESET Details 'EdgeStepper' Implant Used by China-Aligned PlushDaemon to Hijack Software Updates

Microsoft Uncovers ‘SesameOp’ Backdoor Using OpenAI Assistants API for Stealthy C2

Darktrace: Salt Typhoon Used Citrix Flaw in Attempted European Telco Breach

Google Details COLDRIVER’s New NOROBOT, YESROBOT, MAYBEROBOT Toolset After LOSTKEYS Exposure

Cisco Talos Exposes UAT-7237 Cyberattacks on Taiwanese Web Infrastructure

Docker Hub Retains 35 Container Images Harboring XZ-Utils Backdoor

Russia-Linked Hackers Continue Exploiting WinRAR Zero-Day, Manual Patch Required

Researchers Expose OVERSTEP Rootkit on End-of-Life SonicWall VPNs

AyySSHush Botnet Exploits ASUS Flaw to Backdoor Over 9,000 Routers