Released v1.17.0 of The Pdfalyzer, the surprisingly popular tool for analyzing (possibly malicious) PDFs I created after my own unpleasant experience. Now ships with two command line tools for extracting stuff from PDF files:

1. extract_text_from_pdfs() - brute force extract all text from a PDF, including doing an #OCR extraction of any embedded images

2. extract_pdf_pages() - rip a page range from a #PDF and write them to a new one

* Github: https://github.com/michelcrypt4d4mus/pdfalyzer
* Pypi: https://pypi.org/project/pdfalyzer/
* Homebrew: https://formulae.brew.sh/formula/pdfalyzer
* Fun thread someone made last week using Pdfalyzer to explain some of how byzantine the PDF format is: https://x.com/VikParuchuri/status/1965773078585344215

Vane Viper Malvertising Network Posed as Legit Adtech in Global Scams https://hackread.com/vane-viper-malvertising-adtech-global-scams/ #ScamsandFraud #Cybersecurity #Malvertising #PropellerAds #CyberAttack #CyberCrime #VaneViper #Security #Malware #AdTech #Russia #Fraud

SystemBC: A ruidosa botnet que explora servidores VPS para alimentar o cibercrime
 https://tugatech.com.pt/t71935-systembc-a-ruidosa-botnet-que-explora-servidores-vps-para-alimentar-o-cibercrime

Bitdefender: EggStreme Malware: Unpacking a New APT Framework Targeting a Philippine Military Company https://www.bitdefender.com/en-us/blog/businessinsights/eggstreme-fileless-malware-cyberattack-apac #malware #espionage #cybersecurity #infosec

Zimperium: Your Mobile App, Their Playground: The Dark Side of Virtualization https://zimperium.com/blog/your-mobile-app-their-playground-the-dark-side-of-the-virtualization @zimperium #malware #cybersecurity #infosec #Android

CounterLoader: Silent Push Discovers New Malware Loader Being Served in 3 Different Versions https://www.silentpush.com/blog/countloader/

More:

The Hacker News: CountLoader Broadens Russian Ransomware Operations With Multi-Version Malware Loader https://thehackernews.com/2025/09/countloader-broadens-russian-ransomware.html @thehackernews #malware #cybersecurity #infosec #ransomware

Palo Alto Networks acknowledges browser malware risks, validating SquareX’s LMR attack findings https://www.csoonline.com/article/4059348/palo-alto-networks-acknowledges-browser-malware-risks-validating-squarexs-lmr-attack-findings.html #Security #Malware

Cybercrime Activity Reported in August 2025

Interisle's monthly look at cybercrime activity during August 2025 is now posted. We point out anything that strikes us as particularly interesting in overall numbers as well as significant changes in ranking for Top Level Domains (TLDs), Registrars, and Hosting Networks.

https://interisle.substack.com/p/cybercrime-reported-in-august-2025

Threat Actor Infests Hotels With New RAT https://www.securityweek.com/threat-actor-infests-hotels-with-new-rat/ #Malware&Threats #RevengeHotels #VenomRAT #hotel #RAT

Threat Actor Infests Hotels With New RAT https://www.securityweek.com/threat-actor-infests-hotels-with-new-rat/ #Malware&Threats #RevengeHotels #VenomRAT #hotel #RAT

NEW: Hackers are posing as #Empire podcast hosts, tricking crypto influencers and developers with fake interview invites to deliver macOS AMOS Stealer malware.

Read: https://hackread.com/fake-empire-podcast-invites-crypto-macos-amos-stealer/

“Pompompurin” resentenced: BreachForums creator heads back behind bars https://www.bitdefender.com/en-us/blog/hotforsecurity/pompompurin-resentenced-breachforums-creator-heads-back-behind-bars #BreachForums #databreach #Guestblog #Lawℴ #Dataloss #Malware

“Pompompurin” resentenced: BreachForums creator heads back behind bars - Conor Brian Fitzpatrick, the creator of the notorious BreachForums hacking forum, has bee... https://www.bitdefender.com/en-us/blog/hotforsecurity/pompompurin-resentenced-breachforums-creator-heads-back-behind-bars #breachforums #databreach #guestblog #lawℴ #dataloss #malware

Smashing Security podcast #435: Lights! Camera! Hacktion! https://grahamcluley.com/smashing-security-podcast-435/ #SmashingSecurity #Lawℴ #Phishing #phishing #Malware #Podcast #Privacy #israel #school #Iran

Smashing Security podcast #435: Lights! Camera! Hacktion! - When "bad actors" stop being hackers and start being... actual actors.

This week, Graham... https://grahamcluley.com/smashing-security-podcast-435/ #smashingsecurity #lawℴ #phishing #malware #podcast #privacy #israel #school #iran

New Raven Stealer Malware Hits Browsers for Passwords and Payment Data https://hackread.com/raven-stealer-malware-browsers-passwords-payment-data/ #Cybersecurity #RavenStealer #PointWild #Security #Malware #Lat61 #Edge

New Shai-hulud Worm Infecting npm Packages With Millions of Downloads https://hackread.com/shai-hulud-worm-infecting-npm-packages-download/ #Cybersecurity #ReversingLabs #Vulnerability #CyberAttack #Shaihulud #Security #Malware #GitHub #NPM

Microsoft e Cloudflare desmantelam rede de phishing RaccoonO365
 https://tugatech.com.pt/t71926-microsoft-e-cloudflare-desmantelam-rede-de-phishing-raccoono365

Another day, another malware threat - Meet Raven Stealer which targets your web browsers for cookies, passwords, payment data and more.

Read: https://hackread.com/raven-stealer-malware-browsers-passwords-payment-data/

New NPM attack: Self-replicating malware infects dozens of packages - By Christopher Kunz

https://www.heise.de/en/news/New-NPM-attack-Self-replicating-malware-infects-dozens-of-packages-10652404.html