Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
LinuxInsider

Weaponized Python and Linux Malware Target Executives and Cloud Systems

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Experts flag around 800,000 Telnet servers exposed to remote attacks

Hackers are hunting for vulnerable endpoints to deploy Python malware.
Bleeping Computer

Hackers abuse Triofox antivirus feature to deploy remote access tools

Hackers exploited a critical vulnerability and the built-in antivirus feature in Gladinet's Triofox file-sharing and remote-access platform to achieve remote code execution with SYSTEM privileges. The ...
Dark Reading

Evilnum APT Group Employs New Python RAT

The Evilnum advanced persistent threat (APT) group has adopted a new Python remote access Trojan (RAT) to target financial tech organizations with well-crafted spear-phishing attacks. This is one of ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...