Daily Security Briefing #249
- DjediTech
- Security , Newsletter
- May 9, 2026
Table of Contents
May 9, 2026 | Read Online
TCLBANKER malware disrupts WhatsApp and Outlook accounts, Vidar infostealer campaign targets sensitive data, and NVIDIA GeForce NOW suffers a significant data breach…
Executive Summary
Cybersecurity threats continue to escalate with malicious actors exploiting vulnerabilities in popular software and services. The recent TCLBANKER malware campaign leverages WhatsApp and Outlook worm features to spread itself, while the Vidar infostealer campaign aggressively harvests user credentials and sensitive information. Meanwhile, NVIDIA GeForce NOW has confirmed a significant data breach exposing users’ personal data.
Top Articles
TCLBANKER Malware Leverages WhatsApp and Outlook Worm Features in Active Attacks A sophisticated Brazilian banking trojan named TCLBANKER is being deployed through a trojanized Logitech installer, capable of hijacking victims’ WhatsApp and Outlook accounts to spread itself. The campaign delivers TCLBANKER through a malicious MSI installer bundled inside a ZIP file. GBHackers
Vidar Infostealer Campaign Steals Passwords, Cookies, Crypto Wallets, and Device Data A highly evasive multi-stage malware campaign deploying the Vidar Infostealer has been discovered. The campaign utilizes AutoIt scripting and heavily obfuscated loader mechanisms to siphon passwords, cookies, and cryptocurrency wallets. GBHackers | CyberPress
JDownloader Site Hacked to Replace Installers with Python RAT Malware The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows and Linux installers, with the Windows payload deploying a Python-based remote access trojan. BleepingComputer
cPanel, WHM Release Fixes for Three New Vulnerabilities cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could be exploited to achieve privilege escalation, code execution, and denial-of-service. The Hacker News
Fake OpenAI Repository on Hugging Face Pushes Infostealer Malware A malicious Hugging Face repository that reached the platform’s trending list impersonated OpenAI’s “Privacy Filter” project to deliver information-stealing malware to Windows users. BleepingComputer
NVIDIA Confirms GeForce Data Breach Exposed Users’ Personal Data GFN Cloud Internet Services, operating as the regional NVIDIA GeForce NOW cloud gaming partner, has officially confirmed a significant data breach exposing personal information of users registered on their streaming platform. GBHackers
AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.