Chinese Hackers Weaponize Open-Source Nezha Tool in New Attack Wave

Updated on October 8, 2025

Threat actors with suspected ties to China have turned a legitimate open-source monitoring tool called Nezha into an attack weapon, using it to deliver a known malware called Gh0st RAT to targets.
The activity, observed by cybersecurity company Huntress in August 2025, is characterized by the use of an unusual technique called log poisoning (aka log injection) to plant a web shell on a web…

Read the rest of the story at Read More

Source: The Hacker News

September 22, 2025 Uncategorized

Microsoft Patches Critical Entra ID Flaw...

August 30, 2024 Uncategorized

Cyberattackers Exploit Google Sheets for...

July 29, 2024 Uncategorized

Chinese Hackers Weaponize Open-Source Nezha Tool in New Attack Wave

Related posts

Microsoft Patches Critical Entra ID Flaw...

Cyberattackers Exploit Google Sheets for...

‘Stargazer Goblin’ Creates 3...

Leave a Comment Cancel reply

Recent News

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide