Top 5 this week

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release

Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances

China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns

ZLoader Malware Returns With DNS Tunneling to Stealthily Mask C2 Comms

Winos 4.0 Malware Infects Gamers Through Malicious Game Optimization Apps

Warning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign

U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Silk Typhoon

Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack

| CYBER ATTACK |

Admin User

December 31, 2025

Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack — Image credit:
The Hacker News

A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) The malware makes use of obfuscated JavaScript to slip past security guardrails. Manufacturing companies, retail firms, and government agencies are the most affected. To mitigate the risk posed by such attacks, it's recommended to enforce strong password policies, use multi-factor authentication (MFA), keep security solutions and software updated, and apply the principle of least privilege (PoLP)"Beyond stolen data, its impact extends to long-term damage to consumer trust, regulatory fines, and increased costs from business disruption and downtime as well as recovery and remediation," Trend Micro said in a new analysis.

It's important to note that a similar intrusion set that distributes the same malware has been given the name PINEAPPLE by Google's Threat Analysis Group.

CYBER ATTACK CYBERSECURITY DATA BREACH VULNERABILITY