MAL-2026-3777 Malicious code in vue-template-compiler-plugin (npm)

Full C2 implant disguised as vue-template-compiler fork. postinstall-run.cjs loads tooling-bootstrap.cjs which contains base64-encoded C2 agent. Decoded payload: registers victim hostname, username, OS to Cloudflare tunnel C2 at maiden-apply-looks-education.trycloudflare.com, beacons for tasks,...

CVE-2002-2361

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing...

Metamorfo Banking Trojan Abuses AutoHotKey

The Metamorfo banking trojan is abusing AutoHotKey AHK and the AHK compiler to evade detection and steal users’ information, researchers have warned. AHK is a scripting language for Windows originally developed to create keyboard shortcuts i.e., hot keys. According to the Cofense Phishing Defense...

Malware threat to Opera users, Trojan signed with a stolen certificate

On June 19, Browser maker Opera admitted that, it discovered an attack on its internal network infrastructure and windows users may have been tricked into installing a Trojan signed with a stolen Opera certificate. "On June 19th we uncovered, halted and contained a targeted attack on our internal...

Jumi Component for Joomla! <= 2.0.5 Backdoor Detection

The version of Joomla! running on the remote host is affected by a backdoor that is part of a trojan installation of Jumi, a third-party component used for including custom code into Joomla!. An unauthenticated, remote attacker can exploit this backdoor, by using specially crafted input to the...

Cyber thieves ten trick-vulnerability warning-the black bar safety net

Peeping five formula One, you enter the account number when not found behind the eye, someone secretly took down your account. Second, you in the cafe Internet, after the Internet leaves a record, someone with the decryption tool will be your password to unscramble it. Third, you go to repair...

Internet Explorer HTML Help ActiveX buffer overflow

Buffer overflow on oversized 'Image' property. Vulnerability can be used for hidden trojan installation...

How to let someone in Trojan－Trojan a commonly used trick Daguan-vulnerability warning-the black bar safety net

How to let others in the Trojan horse? It is the users who ask the most questions, sketchy answers there are some, but always very little, so the small fish decided to collect everyone's wisdom and Next a little experience to write a feature article. Hope that you get to the floor, perfect this...

WinAmp player buffer overflow

Buffer overflow on oversized computer name in UNC path of .pls on .m3u file entry. Buffer overflow on oversized WMA playlist file entry. Vulnerability can be exploited for hidden trojan installation...

Sun Java sandbox protection bypass

It's possible to bypass sandbox with "reflection" API. This vulnerability can be used for silent trojan installation...

CVE-2002-2361

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing...

CVE-2002-0317

Gator ActiveX component IEGator.dll 3.0.6.1 allows remote web sites to install arbitrary software by specifying a Trojan Gator installation file setup.ex in the src parameter...

Windows &#40;me&#41; printer sharing vulnerability

I'm not sure how much of this is common knowledge or not but since a quick search showed nothing I felt it appropriate to share with the community. I apologize in advance for the length of writing. One of the new "features" of Windows ME that immediately caught my eye was that as soon as I got...