by Ophtek, LLC | Jun 16, 2026 | Bundled software, JDownloader, Linux shell installer, open-source, Remote Access Trojan, supply chain security, unpatched software, Windows installer
A popular software installer has been found carrying malware, briefly exposing thousands of users during a supply-chain attack. JDownloader is a widely used open-source download manager known for handling large files, torrents, and downloads from hosting...
by Ophtek, LLC | Oct 21, 2025 | Admin Accounts, Bookworm, DLL side-Loading, PlugX malware, RAT, Remote Access Trojan, security tools, security_updates, Update Software
Threat actors linked to China have refined two strains of malware – PlugX and Bookworm – to slip past defenses in Asia’s telecom and manufacturing sectors. At the heart of this story is an updated malware campaign which is striking telecom and manufacturing...
by Ophtek, LLC | Feb 18, 2025 | fake malware builder, Ophtek, Remote Access Trojan, script kiddies, XWorm
A hacker has tricked over 18,000 aspiring cybercriminals into downloading a fake malware builder which secretly infects their computers. Yes, even threat actors can find themselves falling victim to their fellow hackers. In this surprising case, threat actors...
by Ophtek, LLC | Jan 7, 2025 | malicious downloads, Ophtek, phishing_email, PowerShell script, RAT, Remcos RAT, Remote Access Trojan
Malware has a habit of going through periods of intense activity, and this is exactly what the Remcos RAT malware has been up to in Q3 2024. First detected in 2016, Remcos is somewhat of a veteran of the malware scene, but its activity has ramped up significantly...
by Ophtek, LLC | Nov 5, 2024 | GitHub, online links, Ophtek, Phishing Email, Remcos RAT, Remote Access Trojan, security software
A new malware campaign, targeting finance and insurance sectors, is using infected GitHub repositories to distribute the Remcos remote access trojan (RAT). GitHub is an online platform which allows software developers to store and share code online. It’s like an...
by Ophtek, LLC | Feb 27, 2024 | anti-malware tools, Bandook Malware, network activity, Ophtek, Phishing Email, Remote Access Trojan
A new variant of the Bandook malware has been discovered which targets Windows PCs, so it’s crucial you know how to deal with it. From its earliest detection in 2007, Bandook has been a capable strain of malware. Being a remote access trojan, Bandook’s main...
