Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor

The Chinese espionage threat group Mustang Panda has updated its CoolClient backdoor to a new variant that can steal login ...

New Amaranth Dragon cyberespionage group exploits WinRAR flaw

A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 ...
The Hacker News

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

APT28 exploited a Microsoft Office flaw to deliver MiniDoor and Covenant Grunt malware in targeted attacks across Ukraine and Eastern Europe.
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

This dangerous APT has expanded its skills with some new tools - here's what we know

Mustang Panda gave CoolClient new bells and whistles, including clipboard monitoring.
GitHub

Inno Setup Download DLL

IS Download DLL is a "plugin" for Inno Setup that allows you to download files from the Internet during the installation process. Support HTTP, HTTPS and FTP protocols. Primarily written to be used ...
GitHub

Custom DLL which contains actual information about the Turtle WoW game client required by the Discord application.

Windows Defender has been falsely blocking our DiscordOverlay.dll. We decided to go open source to prove that there is no harmful content inside the library in question. The file which we distribute ...