The Ultimate Guide to Malware
A curated American edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Malware.
What to know about Malware
Malware represents a broad category of malicious software designed to infiltrate, damage, or disrupt computer systems and networks. From ransomware that locks users out of their data to spyware that quietly steals information, malware continues to evolve in sophistication and reach. Our recent stories cover a wide range of malware threats impacting individuals, businesses, and critical infrastructure, illustrating the diverse strategies cybercriminals use to exploit vulnerabilities.
Delving into these stories provides readers with insights into how malware campaigns operate, the latest trends in attack vectors, and expert advice on defense mechanisms. Understanding malware not only alerts individuals and organisations to potential risks but also guides them in strengthening their digital security posture. Stay informed about the ever-changing malware landscape to better safeguard your data and systems from emerging cyber threats.
American Malware News
Regional stories with direct local relevance
AI now powers most dangerous cyber threats, warns SANS
Defenders face faster, harder-to-stop attacks as SANS says AI is now built into phishing, malware and reconnaissance at scale.
Ransomware hits record high as Qilin tops threat list
Ransomware attacks hit record highs in 2025 as Qilin overtakes LockBit, with victim numbers surging 58% and threat groups multiplying.
Major vendors admit browser attacks bypass secure gateways
Major SASE vendors admit Secure Web Gateways cannot block Last Mile Reassembly attacks, which let malware bypass defences by assembling inside browsers.
Cybersecurity on alert as Iran shifts to disruptive digital attacks
Iranian cyber attacks shift towards causing disruption and political damage following Israeli strikes, raising cybersecurity alarms.
US charges Russian in Qakbot cybercrime, seizes USD $24m
The US has charged Russian Rustam Gallyamov for running the Qakbot malware network, seizing USD $24m in cryptocurrency from cybercrime activities.
Qilin ransomware attack hits sheriff, $48K spent on recovery
Ransomware gang Qilin claimed an April 2025 attack on Tennessee's Hamilton County Sheriff's Office, demanding USD $300,000, with no ransom paid.
Analyst Insights
Research and market analysis connected to Malware
Group-IB named a Leader in Gartner cyberthreat report
Check Point tops Miercom hybrid mesh security benchmark
ManageEngine adds EDR & Zero Trust access to platform
ManageEngine adds EDR & zero trust to Endpoint Central
Acronis boosts MSP security with new threat research
Expert Columns
Your Immune System Doesn't Wait. Neither Should Your Security
A long time ago in a galaxy far, far away…Cybersecurity was already hard
The Death of the Firewall
One click can trigger a breach, but security can stop it
Is the USB making a comeback?
Account Takeover (ATO) fraud: The hidden threat to your business and how to stop it
Securing the digital classroom: A layered cybersecurity approach for K-12 schools
Solving the '3 AM Problem' with 24/7 cyber defence
SonicWall firewalls strengthen security for IoT era
SonicWall pushes unified automation for faster cyber defence
Interviews
Interviews and video coverage from the network
Recent Malware News
FBI warns of rising threat from Medusa ransomware group
Concerns grow over the Medusa ransomware group's threats to critical infrastructure, with attacks on over 300 victims reported amidst escalating cybersecurity risks.
Microsoft & Fortra's joint fight against Cobalt Strike abuse
Microsoft, Fortra, and Health ISAC unite against cybercrime, significantly reducing Cobalt Strike misuse by 80% through international cooperation and proactive strategies.
Sonatype flags 176 npm packages in dependency attack
Developers using npm could have secrets exposed as 176 malicious packages were set up to hijack dependency resolution and run postinstall malware.
OpenClaw adds NVIDIA SkillSpector to ClawHub checks
The registry is tightening checks after malicious uploads exposed a gap between declared skill purpose and actual behaviour.
Global Signal Exchange unveils upgraded fraud platform
Oxford Information Labs says cross-border scam probes could improve as the upgraded platform draws on about 28 million signals across ASEAN.
Ransomware attacks fall in April as The Gentlemen rise
Industrials remained the main target as the monthly ransomware total eased 7%, even as The Gentlemen surged to second place among active gangs.
CrowdStrike disrupts Glassworm botnet targeting developers
Developers using open-source tools face heightened supply-chain risk after the botnet lost all four of its command channels.
Rubrik & MEDITECH team up on hospital cyber resilience
Hospitals using MEDITECH Expanse could restore records faster after ransomware, as Rubrik adds recovery tools across cloud and on-premises systems.
Sage warns SMBs face cyber risk despite spending rise
Despite higher spending plans, half of SMBs reported a cyber incident in the past year, exposing a widening readiness gap.
KongTuke uses Microsoft Teams chats to breach firms
Corporate users can be compromised in under five minutes when attackers pose as help-desk staff in external Microsoft Teams chats, researchers say.
ReliaQuest spots ClickFix attack using PySoxy proxy
The attack kept retrying for hours after network blocks, as a scheduled task and Python proxy preserved access on the host.
AI fuels rise in phishing attacks, Barracuda finds
One in three emails flagged in Barracuda's study was malicious, as AI and phishing kits helped drive more account takeovers.
Ransomware attacks near record as groups consolidate
A smaller band of operators is driving most incidents, leaving companies facing fewer but more organised ransomware gangs.
AI now routine in cyber attacks, Google report finds
Security teams face a broader threat as criminals and state-backed actors use generative AI to speed hacks, phishing and malware.
BlackFog says only one in nine ransomware attacks go public
Undisclosed attacks outnumbered public cases by nine to one, with healthcare and government still bearing the brunt of the ransomware threat.
PropellerAds flags cloaking in 2026 ad safety report
Cloaking drove 68.1% of account suspensions in the quarter, showing how fraudsters are hiding banned ads from moderators on the platform.
Microsoft tops phishing brand rankings in first quarter
Phishing campaigns are increasingly targeting credentials, payments and malware delivery, with Microsoft alone accounting for 22% of brand impersonation attempts.
Identity stays top attack surface as threats broaden
Broader attacker activity is increasingly moving beyond stolen credentials, even as identity still accounted for 58.7% of incidents in Q1 2026.
Celebrity stalkerware leak exposes private messages online
A misconfigured database left 86,859 images and private chats from a prominent European celebrity’s device open to anyone online.
Fortinet warns ransomware victims rise 389% amid AI
Ransomware attacks are spreading faster as AI helps criminals exploit flaws within 24 to 48 hours, the report says.