Novel threat operation RedFly has targeted an unnamed Asian country's national grid with the ShadowPad malware, also known as PoisonPlug, enabling credential theft and extensive computer compromise over a six-month period, according to The Hacker News.

Novel HijackLoader malware loader gains traction, updated RisePro infostealer emerges More threat actors have been leveraging the new modular HijackLoader malware loader in their attacks despite its lack of advanced functionality, The Hacker News reports.

A malicious Word document obtained by researchers in August drips 400 MB of malware misery to a victim's computer.

Mopria, Cisco, Seimens and Schneider, Word, AP Stylebook, DarkGate, GitHub, Chrome, More News, and Jason Wood on the Security Weekly News.

Threat actors have been leveraging malicious fake versions of the Telegram messaging app on the Google Play Store to facilitate spyware deployment on Android devices, The Hacker News reports.

DarkGate distribution has spiked in recent months, with a phishing scam using compromised Teams accounts the latest campaign to surface.

Threat actors have deployed a new malvertising campaign leveraging a fraudulent TradingView ad on Google search to facilitate the distribution of an updated version of the macOS information-stealing malware Atomic Stealer, also known AMOS, The Hacker News reports.