An updated version of the EagerBee backdoor malware is being used against ISPs and government entities in the Middle East, according to Kaspersky researchers. The new variant, which was previously deployed against Southeast Asian organizations, adds several advanced features to improve its stealth and evasion capabilities. Kaspersky attributes the malware to Chinese threat group CoughingDown, which has previously collaborated with other state-backed Chinese groups. EagerBee is designed to seamlessly integrate with normal system operations, making it difficult to identify and analyze.

New Triada comes preinstalled on Android devices
A new variant of the Triada Trojan has been discovered pre-installed on Android devices, enabling data theft from the moment the device is set up,