Cybersecurity & Data Protection
1
UPVOTE
thehackernews.com

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called DEEP#DOOR that comes with capabilities to establish persistent access and harvest a wide range of sensitive information from compromised hosts. "The intrusion chain begins with execution of a batch script ('install_obf.bat') that disables Windows security controls, dynamically extracts an
New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
TN

The Hacker News

15h ago
1 0

Discussion

Begin the discussion

Begin something meaningful by sharing your ideas.

No comments yet.

Be the first to share your take and keep the conversation moving.

Join the conversation

Log in or sign up to add your comment and participate in the discussion!

Log In Sign Up

UPVOTERS

Community appreciation

See who found this content valuable and showed their support.

KH

Lars Khan

Lars KhanUpvoted 15h ago2 comments · 26 shares

TOPICS

Explore the same topics

Discover more content from the topics this post is mapped to.

bleepingcomputer.com
New Bluekit phishing service includes an AI assistant, 40 templ…

A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. [. .. ]
RM

ryan maybe

7h ago
0
krebsonsecurity.com
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs

A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an e…
Giulia

Giulia

12h ago
0
bleepingcomputer.com
Critical cPanel and WHM bug exploited as a zero-day, PoC now av…

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged i…
EK

Emma Klein

14h ago
0
schneier.com
Fast16 Malware

Researchers have reverse-engineered a piece of malware named Fast16. It’s almost certainly state-sponsored, probably US in origin, and was deployed again…
SS

Schneier on Security

15h ago
0
thehackernews.com
New Linux 'Copy Fail' Vulnerability Enables Root Access on Majo…

Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that could allow an unprivileged local user to obtain root. T…
TN

The Hacker News

15h ago
0
thehackernews.com
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable …

Google has addressed a maximum severity security flaw in Gemini CLI -- the "@google/gemini-cli" npm package and the "google-github-actions/run-gemini-cli" GitH…
NightCurator

NightCurator

19h ago
0

Keep browsing

Explore more from this topic

Dive into the full feed of curated posts covering Cybersecurity & Data Protection.

Browse Topics

RELATED CONTENT

Continue exploring

Discover more content that aligns with your interests and this post.

thehackernews.com
New Linux 'Copy Fail' Vulnerability Enables Root Access on Majo…

Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that could allow an unprivileged local user to obtain root. T…
TN

The Hacker News

15h ago
0
thehackernews.com
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable …

Google has addressed a maximum severity security flaw in Gemini CLI -- the "@google/gemini-cli" npm package and the "google-github-actions/run-gemini-cli" GitH…
NightCurator

NightCurator

19h ago
0
thehackernews.com
SAP-Related npm Packages Compromised in Credential-Stealing Sup…

Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware.…
MB

Maria Bakker

1d ago
0
thehackernews.com
What to Look for in an Exposure Management Platform (And What M…

Every security team has a version of the same story. The quarter ends with hundreds of vulnerabilities closed. The dashboards are bursting with green. Then som…
TN

The Hacker News

1d ago
0
thehackernews.com
VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on W…

Threat hunters are warning that the cybercriminal operation known as VECT 2. 0 acts more like a wiper than a ransomware due to a critical flaw in its encryptio…
Giulia

Giulia

2d ago
0
thehackernews.com
Checkmarx Confirms GitHub Repository Data Posted on Dark Web Af…

Checkmarx has disclosed that its ongoing investigation tied to the supply chain security incident has revealed that a cybercriminal group published data relate…
TN

The Hacker News

3d ago
0

Still curious?

See more related posts

Keep the inspiration flowing with fresh submissions and trending finds from the community.

View Latest