All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Security
Security
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

GoodPersonRAT: Fake Chinese VPN drops extensive C2 client

6h ago

Source

ThreatLockerGoodPersonRAT: Fake Chinese VPN drops extensive C2 clientthreatlocker.com
Snippet from the RSS feed
The GoodPersonRAT is a fake LetsVPN installer that gives an attacker total control of a victim’s machine. Read the report from ThreatLocker Threat Intelligence.

You might also wanna read

Analysis of a Sophisticated Fake-Interview Malware Attack Targeting a Rust Developer

A developer recounts a close encounter with a sophisticated fake-interview scam (dubbed "PinpinRAT") designed to backdoor their machine, lik

grack.com·11d ago

Fake ChatGPT and Claude installers on GitHub and SourceForge deliver Deno RAT malware that steals crypto wallets

Attackers are distributing counterfeit installers for popular software like ChatGPT, Claude, AutoTune, Kontakt, Ableton Live, and ZENOLOGY o

helpnetsecurity.com·1mo ago

Typosquatted npm Package Delivers Windows RAT with Encrypted C2 and Registry Persistence

A malware campaign targets Windows systems via a typosquatted npm package called postcss-minify-selector-parser, disguised as the legitimate

cybersecuritynews.com·14d ago

Social media post alleges Anthropic's Claude Code secretly collects user metadata from Chinese users

A viral social media post accuses Anthropic of embedding hidden code in Claude Code that covertly collects and routes metadata (timezone, pr

twitter.com·8d ago

CrowdStrike, Google, and Shadowserver dismantle Glassworm botnet targeting open-source developers

CrowdStrike, in collaboration with Google and the nonprofit Shadowserver, has taken down the Glassworm botnet — a cybercriminal operation th

techcrunch.com·1mo ago

Cybercriminals use fake GitHub, YouTube, and SourceForge profiles to fuel cryptocurrency heist

Cybercriminals have built an elaborate global reputation network using GitHub repositories, SourceForge projects, fake YouTube videos, and o

darkreading.com·15d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.