グダペスト　Гудапешт
ゾクの巣穴はハチの巣だ！
це питання лічених секунд,

https://www.deviantart.com/poison-raika/art/Gudapesuto-1305247277

<>

#ＡＩ生成 #front #line #giant #hornet #crush #sewer #rat #fallen #angel #Babaya #sow #seed #judgment #hellfire #burn #filthy #vermin #wolve #bare #fang #Zok #burrow #into #honeycomb #land #rhino #turn #pumpkin #balls #sky

Good news: the deadline for early bird registration to the Small Mammal Conservation Conference is moved to the 18th of April.
Register and discuss with fellow mammal lovers about ways to make the invisible small mammals noticed.
https://smcc.habitatfoundation.org

Photos: Rollin Verlinde / Vilda

#SMCC #discovermammals #molars #mammal #mouse #vole #shrew #rat #hare #rabbit #squirrel #dormouse #SMCC #Bulgaria hashtag#hamster #souslik #LIFE #saveraptors #rodent #agriculture #blind

Operation DualScript: Mehrstufige PowerShell-Malware zielt auf Krypto-Wallets und Bankdaten ab

Während die erste Kette Kryptowährungs-Transaktionen manipuliert, schleust die zweite einen Remote-Access-Trojaner namens RetroRAT ein.

https://www.all-about-security.de/operation-dualscript-mehrstufige-powershell-malware-zielt-auf-krypto-wallets-und-bankdaten-ab/

#malware #PowerShell #remoteaccess #trojaner #RAT

Inside the Axios supply chain compromise - one RAT to rule them all

Elastic Security Labs identified a supply chain compromise of the axios npm package, one of the most depended-upon packages in the JavaScript ecosystem with approximately 100 million weekly downloads. The attacker compromised a maintainer account and published backdoored versions that delivered a cross-platform Remote Access Trojan to macOS, Windows, and Linux systems through a malicious postinstall hook.

Pulse ID: 69cd1c2e48c8aeef1f743d7f
Pulse Link: https://otx.alienvault.com/pulse/69cd1c2e48c8aeef1f743d7f
Pulse Author: AlienVault
Created: 2026-04-01 13:22:54

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #CyberSecurity #ElasticSecurityLabs #InfoSec #Java #JavaScript #Linux #Mac #MacOS #NPM #OTX #OpenThreatExchange #RAT #RemoteAccessTrojan #SupplyChain #Trojan #Windows #bot #iOS #AlienVault

Stranger Strings: Yurei Ransomware Operator Toolkit Exposed

Active since September 2025, Yurei is a double extortion ransomware campaign. The operators run their own Tor data leak site with a low number of victims listed at the time of writing. It is reportedly derived from Prince Ransomware, an open-source ransomware family written in Go. Check Point researchers noted that all samples were first submitted to VirusTotal from Morocco, and that one sample did not include a ticket ID, indicating that this could be a test build, possibly uploaded by the developer themselves. Yurei ransomware samples also contained a link to SatanLockv2, based on the presence of the PDB path string “D:\satanlockv2” present in the Yurei samples.

Pulse ID: 69cd66412a30a525e66b507d
Pulse Link: https://otx.alienvault.com/pulse/69cd66412a30a525e66b507d
Pulse Author: AlienVault
Created: 2026-04-01 18:38:57

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CheckPoint #CyberSecurity #Extortion #InfoSec #OTX #OpenThreatExchange #RAT #RCE #RansomWare #Rust #VirusTotal #bot #AlienVault

グダペスト　Гудапешт
ゾクの巣穴はハチの巣だ！
це питання лічених секунд,

https://www.pixiv.net/novel/show.php?id=27431775

<>

#ＡＩ生成 #front #line #giant #hornet #crush #sewer #rat #fallen #angel #Babaya #sow #seed #judgment #hellfire #burn #filthy #vermin #wolve #bare #fang #Zok #burrow #into #honeycomb #land #rhino #turn #pumpkin #balls #sky

From Inbox to Intrusion: Multi‑Stage Remcos RAT and C2‑Delivered Payloads in Network

This multi-stage fileless Remcos RAT attack leverages a phishing-delivered JavaScript dropper to trigger a reflective PowerShell loader that executes payloads entirely in memory. The infection chain utilizes obfuscation techniques like rotational XOR and Base64 encoding to reconstruct .NET payloads, significantly reducing the disk-based detection footprint. Stealth is maintained by using aspnet_compiler.exe as a LOLBin to proxy malicious execution and dynamically retrieving the final payload from a remote C2 server.

Pulse ID: 69cd1ac8518646002a1a0fbc
Pulse Link: https://otx.alienvault.com/pulse/69cd1ac8518646002a1a0fbc
Pulse Author: AlienVault
Created: 2026-04-01 13:16:56

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#ASPNet #ASPNet_Compiler #CyberSecurity #InfoSec #Java #JavaScript #NET #OTX #OpenThreatExchange #Phishing #PowerShell #Proxy #RAT #Remcos #RemcosRAT #bot #AlienVault

North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack | Google Cloud Blog

A North Korea-Nexus threat actor is targeting a popular JavaScript package, which is used by millions of users, to deliver malware on Windows, macOS, Linux and other operating systems, analysis shows.

Pulse ID: 69cd12aea363839ddf9b50f1
Pulse Link: https://otx.alienvault.com/pulse/69cd12aea363839ddf9b50f1
Pulse Author: CyberHunter_NL
Created: 2026-04-01 12:42:22

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Cloud #CyberSecurity #Google #InfoSec #Java #JavaScript #Korea #Linux #Mac #MacOS #Malware #NPM #NorthKorea #OTX #OpenThreatExchange #RAT #SupplyChain #Windows #bot #iOS #CyberHunter_NL