Turns out, this Konfety isn’t the kind you toss at parties—this one crashes the celebration by sneaking in as a benign app’s evil twin, spreading malware through third-party sources. Expanding on stealth techniques, threat actors are also embedding malware in DNS records, enabling payload delivery that bypasses traditional security controls and evades early detection. Additionally, hackers are leveraging polyglot files that combine ZIP and DLL formats to bypass email filters, with the malicious payload remaining hidden until the file is manually opened by the user. Continue reading for more cybersecurity news from the last 24 hours.
01
A new Konfety malware variant uses an "evil twin" tactic, mimicking a benign Play Store app’s package name while distributing a malicious version via third-party sources.
02
Threat actors are embedding malware in DNS records, enabling stealthy payload delivery that bypasses traditional security tools.
03
Protestware hidden in 28 npm packages has been targeting Russian-speaking users by disrupting UIs and playing the Ukrainian national anthem on Russian and Belarusian domains.
04
An international law enforcement operation, codenamed Operation Elicius, dismantled the Romanian ransomware gang 'Diskstation,' which targeted Synology NAS devices and disrupted businesses in Lombardy.
05
Hackers are bypassing email filters using polyglot ZIP-DLL files that evade detection until manually opened by users.
06
Google patched six Chrome vulnerabilities, including CVE-2025-6558, a sandbox escape flaw enabling remote code execution via crafted HTML.
07
A critical flaw in Windows Server 2025's delegated Managed Service Accounts (dMSAs) allows attackers to perform cross-domain lateral movement and maintain persistent AD access.
08
Samsung’s WEA453e access points contain critical flaws enabling remote root-level command execution via a reflected XSS attack chain.
09
Italian IoT cybersecurity firm Exein secured $81M in a Series C funding round led by Balderton, with participation from Supernova, Lakestar, 33N, United Ventures, and Partech.
10
iCOUNTER, a cyber risk company, exited stealth with $30M in a Series A funding round led by SYN Ventures.
