MintLoader is delivering a nasty surprise. Security researchers have discovered that it's now being used to deliver a variety of second-stage payloads. A new Android malware strain has popped up and researchers have linked it to the infamous DoNot Team APT group. In other news, CERT-UA has issued a warning about a new scam where cybercriminals are using AnyDesk to gain access to victims' computers. Read on for more.
01
An ongoing MintLoader campaign has been found deploying second-stage payloads like Stealc and the Berkeley Open Infrastructure for Network Computing (BOINC) client.
02
CYFIRMA connected new Android malware, named Tanzeem and Tanzeem Update, to the Indian APT group DoNot Team. The two artifacts share the same code, with minor differences in the user interface.
03
Sophos found that a Gootloader campaign has been using hijacked Google Search results to lure victims to compromised WordPress websites, tricking them into downloading malware.
04
Four security bugs were spotted in several tunneling protocols, leaving 4.2 million hosts susceptible to attacks. China, France, Japan, the U.S., and Brazil top the list of the most affected countries.
05
CERT-UA warned of cybercriminals sending connection requests via AnyDesk under the pretext of conducting a ‘security audit to verify the level of protection,’ to gain access to target systems.
06
OWASP released its updated list of the top 10 vulnerabilities affecting smart contracts in 2025. Some of them include Access Control Vulnerabilities, Price Oracle Manipulation, and Logic Errors.
07
New research revealed that, under specific query conditions, behavior of ChatGPT’s web crawler can be exploited through a discovered vulnerability.
08
A phishing website targeting Homebrew was found in Google Search results. Clicking on the ad led to the download of a backdoor.
09
A study by Harmonic Security shows that nearly 10% of prompts from business users on GenAI tools could expose sensitive data. 8.5% of prompts risk exposing information, with 45.8% of these revealing customer data.
10
CYFIRMA received a strategic investment from MDI Ventures, to boost CYFIRMA’s growth and enhance its global cybersecurity solutions for enterprises.
