Featured Categories

Cyber Attacks

Data Breaches

Expert Opinion

Featured

dark

Hand-Picked Top-Read Stories

Intellexa Leaks Reveal Zero-Days and Ads-Based Vector for Predator Spyware Delivery

“Getting to Yes”: An Anti-Sales Guide for MSPs

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

Trending Tags

Latest News

1 minute read

Mustang Panda Deploys SnakeDisk USB Worm to Deliver Yokai Backdoor on Thailand IPs

info@thehackernews.com (The Hacker News)

September 15, 2025

The China-aligned threat actor known as Mustang Panda has been observed using an updated version of a backdoor called TONESHELL and a previously undocumented USB worm called SnakeDisk. “The worm only executes on devices with Thailand-based IP addresses and drops the Yokai backdoor,” IBM X-Force researchers Golo Mühr and Joshua Chung said in an analysis published last week. The tech giant’s

[[{“value”:”The China-aligned threat actor known as Mustang Panda has been observed using an updated version of a backdoor called TONESHELL and a previously undocumented USB worm called SnakeDisk.
“The worm only executes on devices with Thailand-based IP addresses and drops the Yokai backdoor,” IBM X-Force researchers Golo Mühr and Joshua Chung said in an analysis published last week.
The tech giant’s”}]] The Hacker News

Previous Post

Latest News

6 Browser-Based Attacks Security Teams Need to Prepare For Right Now

September 15, 2025

Next Post

Latest News

40 npm Packages Compromised in Supply Chain Attack Using bundle.js to Steal Credentials

September 16, 2025

Related Posts

3 min

Latest News

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

A new malware attributed to the Russia-linked hacking group known as COLDRIVER has undergone numerous developmental iterations since May 2025, suggesting an increased "operations tempo" from the threat actor. The findings come from Google Threat Intelligence Group (GTIG), which said the state-sponsored hacking crew has rapidly refined and retooled its malware arsenal merely five days following

info@thehackernews.com (The Hacker News)

October 21, 2025

2 min

Latest News

Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware

The threat actor known as Confucius has been attributed to a new phishing campaign that has targeted Pakistan with malware families like WooperStealer and Anondoor. "Over the past decade, Confucius has repeatedly targeted government agencies, military organizations, defense contractors, and critical industries -- especially in Pakistan – using spear-phishing and malicious documents as initial

info@thehackernews.com (The Hacker News)

October 2, 2025

2 min

Latest News

Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation

Grafana has released security updates to address a maximum severity security flaw that could allow privilege escalation or user impersonation under certain configurations. The vulnerability, tracked as CVE-2025-41115, carries a CVSS score of 10.0. It resides in the System for Cross-domain Identity Management (SCIM) component that allows automated user provisioning and management. First

info@thehackernews.com (The Hacker News)

November 21, 2025