Attacks with an updated and simplified RomCom RAT variant dubbed PEAPOD have been launched by the Void Rabisu threat operation, also known as Storm-0978, UNC2596, and Tropical Scorpius, against female political leaders who participated in the Women Political Leaders Summit in June, according to The Hacker News.

Threat actors have targeted .NET developers with a malicious NuGet package typosquatting the Pathoschild.Stardew.ModBuildConfig deploying the SeroXen RAT, The Hacker News reports.

Asian governments, telcos impacted by ToddyCat-linked attack campaign Asian government entities and telecommunications providers, particularly those in Vietnam, Pakistan, Kazakhstan, and Uzbekistan, have been subjected to an ongoing malware attack campaign linked to Chinese cyberespionage operation ToddyCat since 2021, according to BleepingComputer.

Poorly secured Linux SSH servers have been subjected to attacks with the ShellBot distributed denial-of-service malware that involved the use of IP addresses modified into their hexadecimal form, reports The Hacker News.

Researchers have noticed a surge in campaigns deploying DarkGate malware via messaging platforms Skype and Microsoft Teams.

This week Dr. Doug talks: Microsoft, SeroxenRAT, Smart Links, Vogons, ToddyCAT, ShellBot, Hidden servers, Aaran Leyland, and More on the Security Weekly News!

BleepingComputer reports that WordPress sites could be taken over by a new backdoor masquerading as a legitimate caching plugin.