The Ultimate Guide to Malware
A curated American edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Malware.
What to know about Malware
Malware represents a broad category of malicious software designed to infiltrate, damage, or disrupt computer systems and networks. From ransomware that locks users out of their data to spyware that quietly steals information, malware continues to evolve in sophistication and reach. Our recent stories cover a wide range of malware threats impacting individuals, businesses, and critical infrastructure, illustrating the diverse strategies cybercriminals use to exploit vulnerabilities.
Delving into these stories provides readers with insights into how malware campaigns operate, the latest trends in attack vectors, and expert advice on defense mechanisms. Understanding malware not only alerts individuals and organisations to potential risks but also guides them in strengthening their digital security posture. Stay informed about the ever-changing malware landscape to better safeguard your data and systems from emerging cyber threats.
American Malware News
Regional stories with direct local relevance
Tanium launches AI tools & expands FedRAMP services
US government agencies and security teams will get broader compliance and threat-hunting tools as Tanium adds AI features and FedRAMP services.
AI now powers most dangerous cyber threats, warns SANS
Defenders face faster, harder-to-stop attacks as SANS says AI is now built into phishing, malware and reconnaissance at scale.
Ransomware hits record high as Qilin tops threat list
Ransomware attacks hit record highs in 2025 as Qilin overtakes LockBit, with victim numbers surging 58% and threat groups multiplying.
Major vendors admit browser attacks bypass secure gateways
Major SASE vendors admit Secure Web Gateways cannot block Last Mile Reassembly attacks, which let malware bypass defences by assembling inside browsers.
Cybersecurity on alert as Iran shifts to disruptive digital attacks
Iranian cyber attacks shift towards causing disruption and political damage following Israeli strikes, raising cybersecurity alarms.
US charges Russian in Qakbot cybercrime, seizes USD $24m
The US has charged Russian Rustam Gallyamov for running the Qakbot malware network, seizing USD $24m in cryptocurrency from cybercrime activities.
Analyst Insights
Research and market analysis connected to Malware
Group-IB named a Leader in Gartner cyberthreat report
Check Point tops Miercom hybrid mesh security benchmark
ManageEngine adds EDR & Zero Trust access to platform
ManageEngine adds EDR & zero trust to Endpoint Central
Acronis boosts MSP security with new threat research
Expert Columns
Cyber hygiene 101: The big fundamentals
Your Immune System Doesn't Wait. Neither Should Your Security
A long time ago in a galaxy far, far away…Cybersecurity was already hard
The Death of the Firewall
One click can trigger a breach, but security can stop it
Is the USB making a comeback?
Account Takeover (ATO) fraud: The hidden threat to your business and how to stop it
Securing the digital classroom: A layered cybersecurity approach for K-12 schools
Solving the '3 AM Problem' with 24/7 cyber defence
SonicWall firewalls strengthen security for IoT era
Interviews
Interviews and video coverage from the network
Recent Malware News
Qilin ransomware attack hits sheriff, $48K spent on recovery
Ransomware gang Qilin claimed an April 2025 attack on Tennessee's Hamilton County Sheriff's Office, demanding USD $300,000, with no ransom paid.
FBI warns of rising threat from Medusa ransomware group
Concerns grow over the Medusa ransomware group's threats to critical infrastructure, with attacks on over 300 victims reported amidst escalating cybersecurity risks.
Microsoft & Fortra's joint fight against Cobalt Strike abuse
Microsoft, Fortra, and Health ISAC unite against cybercrime, significantly reducing Cobalt Strike misuse by 80% through international cooperation and proactive strategies.
CISOs see AI as opportunity amid cyber threat fears
Most security leaders now see AI as a cybersecurity opportunity, even as concerns over supplier exposure and domain attacks remain high.
Barracuda launches AI email protection for Microsoft 365
A single phishing email can now compromise identities, bypass multifactor authentication and hit endpoints within five minutes, Barracuda said.
Rapid Brigantine ties ClickFix malware to fake updates
BlueVoyant says a ClickFix malware campaign using fake browser updates is linked to the Rapid Brigantine ransomware ecosystem.
Attacks use remote access tools to evade detection
Trusted software is giving cybercriminals persistent access to PCs, making attacks harder to spot and raising the risk of data theft.
Fans warned over World Cup cyber scams & fake tickets
Fans buying tickets or streams for the FIFA World Cup face fake sites, rogue apps and QR-code traps that can steal payment details.
Infoblox finds residential proxy traffic in most firms
More than 65% of enterprise customers showed residential proxy-related DNS activity, exposing firms to reputational and operational risks.
Infoblox finds residential proxies rife in business networks
More than 65 per cent of Infoblox customers were found querying domains linked to residential proxy networks, widening risks for defenders.
Cyber criminals target World Cup staff & suppliers
Attackers are using fake World Cup sites and messaging apps to steal credentials, with some scams now aimed at event suppliers and staff.
North Korea-linked hackers target developers via GitHub
Nearly 100 organisations were hit in a six-week phishing spree that used GitHub repositories and Visual Studio Code tools to infect developers.
Cybercriminals target FIFA World Cup 2026 fans online
Fans and jobseekers are being targeted by a growing wave of fake ticket, travel and recruitment scams ahead of the tournament.
ESET report finds 45% of SMBs hit by cyber incidents
Nearly half of small businesses suffered cyber incidents last year, despite most saying they were confident in their defences.
Synology adds private AI & backup tools in DSM update
Businesses will soon get on-site AI workflows and broader backup coverage as Synology's latest software updates target compliance and ransomware risk.
Sonatype flags 176 npm packages in dependency attack
Developers using npm could have secrets exposed as 176 malicious packages were set up to hijack dependency resolution and run postinstall malware.
OpenClaw adds NVIDIA SkillSpector to ClawHub checks
The registry is tightening checks after malicious uploads exposed a gap between declared skill purpose and actual behaviour.
Global Signal Exchange unveils upgraded fraud platform
Oxford Information Labs says cross-border scam probes could improve as the upgraded platform draws on about 28 million signals across ASEAN.
Ransomware attacks fall in April as The Gentlemen rise
Industrials remained the main target as the monthly ransomware total eased 7%, even as The Gentlemen surged to second place among active gangs.
CrowdStrike disrupts Glassworm botnet targeting developers
Developers using open-source tools face heightened supply-chain risk after the botnet lost all four of its command channels.