Cybersecurity & Data Protection
1
UPVOTE
thehackernews.com

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

A new, stealthy backdoor named Mistic has been deployed as part of suspected financially motivated attacks aimed at multiple organizations spanning insurance, education, IT, and professional services sectors since April 2026. According to Symantec and Carbon Black's Threat Hunter Team, the backdoor, also tracked as MLTBackdoor, is said to be linked to an initial access broker (IAB) named
New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns
TN

The Hacker News

1d ago
1 0

Discussion

Take the lead—comment now

Lead the way—your insights can inspire others.

No comments yet.

Be the first to share your take and keep the conversation moving.

Join the conversation

Log in or sign up to add your comment and participate in the discussion!

Log In Sign Up

UPVOTERS

Community appreciation

See who found this content valuable and showed their support.

giulia_design

Giulia

GiuliaUpvoted 1d ago1 comments · 23 shares

TOPICS

Explore the same topics

Discover more content from the topics this post is mapped to.

schneier.com
One Million Passports Leaked Online

A database of almost a million passports from around the world was leaked online. Note what happened. A high-value credential—a passport—was used i…
SS

Schneier on Security

2026-06-26 15:14
0
bleepingcomputer.com
Anthropic is testing desktop-like Claude Cowork for mobile

Anthropic appears to be testing Claude Cowork support on mobile, allowing you to manage long-running Claude tasks from your phone. [. .. ]
Thanakorn Boon

Thanakorn Boon

13h ago
0
thehackernews.com
Chrome Ad Blocker with 10M+ Installs Found with Dormant Script …

An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code. According to Island, the…
TN

The Hacker News

18h ago
0
schneier.com
AI and Liability

Earlier this month, a German court ruled that Google is liable for its AI search summaries. Rejecting defenses like “users can check for themselves, &#82…
SS

Schneier on Security

19h ago
0
schneier.com
Interesting Paper Exploring Prompt Injection

This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/…
SS

Schneier on Security

1d ago
0
thehackernews.com
New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-…

A previously undocumented Rust-based macOS implant and information stealer has been found to embed a prompt injection payload designed to trick a malware analy…
Nirano

Nirano

1d ago
0

Keep browsing

Explore more from this topic

Dive into the full feed of curated posts covering Cybersecurity & Data Protection.

Browse Topics

RELATED CONTENT

Continue exploring

Discover more content that aligns with your interests and this post.

thehackernews.com
Chrome Ad Blocker with 10M+ Installs Found with Dormant Script …

An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code. According to Island, the…
TN

The Hacker News

18h ago
0
thehackernews.com
New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-…

A previously undocumented Rust-based macOS implant and information stealer has been found to embed a prompt injection payload designed to trick a malware analy…
Nirano

Nirano

1d ago
0
thehackernews.com
CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Ex…

The U. S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5…
MA

maya af

1d ago
0
thehackernews.com
Dawn of the Apex Agentic Adversary

We are standing at the end of an era we never thought to mourn: the era of human-speed threats. For years, cybersecurity moved to a rhythm organizations could…
TN

The Hacker News

1d ago
0
thehackernews.com
FortiBleed Targeted FortiGate Firewalls in 110 Million-Credenti…

A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBl…
Marcus Allen

Marcus Allen

2d ago
0
thehackernews.com
OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Pa…

OpenAI on Monday said it's releasing an improved version of its GPT‑5. 5‑Cyber model to trusted defenders as part of the Daybreak initiative, the artificial in…
TN

The Hacker News

3d ago
0

Still curious?

See more related posts

Keep the inspiration flowing with fresh submissions and trending finds from the community.

View Latest