rat

2 articles
sort: new top best
clear filter
bug-bounty536 xss296 rce173 google147 exploit122 bragging-post121 account-takeover120 facebook117 privilege-escalation105 malware101 microsoft100 open-source96 authentication-bypass95 csrf87 cve79 stored-xss75 access-control74 ai-agents68 web-security68 writeup67 phishing64 reflected-xss63 input-validation55 ssrf55 information-disclosure53 reverse-engineering53 api-security51 sql-injection51 apple50 cross-site-scripting49 smart-contract49 defi48 privacy47 tool46 ethereum45 vulnerability-disclosure44 browser41 ai-security41 dos39 web-application38 remote-code-execution37 burp-suite37 opinion37 web337 credential-theft37 llm37 automation37 supply-chain36 lfi36 race-condition36
0 7/10
BeatBanker: A dual‑mode Android Trojan
malware-analysis

BeatBanker is a dual-mode Android Trojan targeting Brazil that combines cryptocurrency mining (XMRig) with banking fraud capabilities. It spreads via phishing to a fake Google Play Store, uses native code obfuscation, in-memory DEX loading to evade detection, and leverages Firebase Cloud Messaging as a C2 channel while maintaining persistence through silent audio playback and foreground services.

android-malware trojan banking-trojan cryptocurrency-miner xmrig phishing persistence anti-analysis firebase-c2 overlay-attack privilege-escalation native-code dex-loading in-memory-execution rat btmob
BeatBanker XMRig BTMOB Firebase Cloud Messaging Kaspersky GReAT cupomgratisfood.shop fud2026.com accessor.fud2026.com pool.fud2026.com Binance Trust Wallet INSS Instituto Nacional do Seguro Social
securelist.com · GReAT · 4 days ago · details
0 3/10
Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
threat-intel

Three malicious PHP packages on Packagist disguised as Laravel utilities were discovered distributing a cross-platform remote access trojan (RAT) capable of compromising Windows, macOS, and Linux systems. The packages—lara-helper, simple-queue, and lara-swagger—achieved limited distribution (29-49 downloads each) before being flagged by security researchers.

supply-chain-attack malicious-package packagist php laravel rat remote-access-trojan cross-platform malware windows macos linux
Packagist Laravel nhattuanbl/lara-helper nhattuanbl/simple-queue nhattuanbl/lara-swagger
thehackernews.com · [email protected] (The Hacker News) · 10 days ago · details