CyberSecurityBoard
Sponsor Register Login

New Atroposia RAT Surfaces on Dark Web, Targeting Windows Systems

A new Remote Access Trojan (RAT) named Atroposia has recently emerged on the dark web, targeting Windows operating systems. This malware is designed to provide attackers with extensive control over infected machines, enabling data theft, system manipulation, and persistent access. Atroposia's capabilities include keylogging, screen capturing, file management, and command execution, making it a versatile tool for cybercriminals. The RAT is being marketed aggressively on underground forums, highlighting its ease of use and robust feature set. Security researchers warn that Atroposia could be integrated into larger cyberattack campaigns, posing significant risks to organizations and individuals alike. The rise of Atroposia reflects the ongoing trend of sophisticated malware development within the cybercrime ecosystem. Its availability on the dark web lowers the barrier for less skilled threat actors to launch impactful attacks. Organizations are advised to enhance their endpoint security measures, monitor network traffic for unusual activity, and educate employees about phishing and social engineering tactics that often serve as initial infection vectors. In-depth analysis of Atroposia reveals that it employs advanced evasion techniques to avoid detection by traditional antivirus solutions. This includes code obfuscation and the use of encrypted communication channels with command and control servers. The malware's modular architecture allows for updates and customization, increasing its longevity and adaptability in the wild. Cybersecurity professionals emphasize the importance of threat intelligence sharing and proactive defense strategies to mitigate the impact of emerging threats like Atroposia. Regular software patching, multi-factor authentication, and comprehensive incident response plans are critical components of a resilient security posture. As Atroposia continues to evolve, continuous monitoring and research are essential to understand its full capabilities and develop effective countermeasures. Collaboration between private sector entities, government agencies, and security researchers will be key to combating this new RAT and protecting digital assets from compromise.

This Cyber News was published on www.infosecurity-magazine.com. Publication date: Wed, 29 Oct 2025 11:20:03 +0000


Cyber News related to New Atroposia RAT Surfaces on Dark Web, Targeting Windows Systems

10 Best Dark Web Monitoring Tools in 2025 - DarkOwl is a comprehensive dark web monitoring tool that provides organizations with real-time intelligence on emerging threats and data breaches. Recorded Future is a comprehensive dark web monitoring tool that leverages machine learning and ...
3 months ago Cybersecuritynews.com
New Atroposia RAT Surfaces on Dark Web, Targeting Windows Systems - A new Remote Access Trojan (RAT) named Atroposia has recently emerged on the dark web, targeting Windows operating systems. This malware is designed to provide attackers with extensive control over infected machines, enabling data theft, system ...
2 weeks ago Infosecurity-magazine.com
The Persistent Danger of Remcos RAT - From initial infection to persistent control, the Remcos RAT campaign exemplifies the evolving nature of cyber threats and the need for proactive defense measures. This ecosystem is supported by a diverse array of servers that function as command and ...
1 year ago Cyberdefensemagazine.com
Digital Battlefield: Syrian Threat Group's Sinister SilverRAT Emerges - Cyfirma claims that the developers maintain a sophisticated and active presence on multiple hacker forums and social media platforms, as outlined by the cybersecurity company. Besides operating a Telegram channel offering leaked databases, carding ...
1 year ago Cysecurity.news
New Atroposia RAT with Stealthy Remote Desktop Capabilities Discovered - A new strain of the Atroposia Remote Access Trojan (RAT) has been discovered, featuring advanced stealthy remote desktop capabilities that pose significant threats to cybersecurity. This malware allows attackers to gain unauthorized remote access to ...
2 weeks ago Cybersecuritynews.com
Attackers Sell Turnkey Remote Access Trojan Atroposia - Cybercriminals have introduced Atroposia, a turnkey Remote Access Trojan (RAT) available for sale on underground forums, posing a significant threat to cybersecurity. Atroposia is designed to provide attackers with extensive remote control ...
2 weeks ago Darkreading.com
SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities - The Pakistan-linked threat actor known as SideCopy has been observed leveraging the recent WinRAR security vulnerability in its attacks targeting Indian government entities to deliver various remote access trojans such as AllaKore RAT, Ares RAT, and ...
1 year ago Thehackernews.com CVE-2023-38831 APT3 SideCopy Transparent Tribe
New Atroposia malware comes with a local vulnerability scanner - Atroposia is a newly discovered malware that stands out due to its integrated local vulnerability scanner, enabling it to identify exploitable weaknesses on infected systems. This advanced feature allows Atroposia to escalate its attack capabilities ...
2 weeks ago Bleepingcomputer.com
Monitoring Dark Web Threats - CISO’s Proactive Approach - By embedding these best practices into the organization’s security posture, CISOs can ensure that dark web monitoring delivers actionable insights and drives continuous improvement. As the dark web continues to evolve, CISOs must champion a culture ...
6 months ago Cybersecuritynews.com
A New, Spookier Gh0st RAT Malware Haunts Global Cyber Targets - A new variant of the infamous "Gh0st RAT" malware has been identified in recent attacks targeting South Koreans and the Ministry of Foreign Affairs in Uzbekistan. The Chinese group "C.Rufus Security Team" first released Gh0st RAT on the open Web in ...
1 year ago Darkreading.com
Microsoft: New RAT malware used for crypto theft, reconnaissance - Last but not least, Microsoft says StilachiRAT allows command execution and potential SOCKS-like proxying using commands from a command-and-control (C2) server to the infected devices, which can let the threat actors reboot the compromised system, ...
7 months ago Bleepingcomputer.com
Dark Caracal group might have refreshed its malware, researchers say | The Record from Recorded Future News - Campaigns linked to Bandook and Poco RAT share key traits, researchers said, including the use of blurred decoy documents, link-shortening services and legitimate cloud storage for payload distribution, which can make operations harder to detect. The ...
8 months ago Therecord.media Dark Caracal
Tracking Everything on the Dark Web Is Mission Critical - COMMENTARYOne of the standard cybersecurity tools today is to relentlessly check the Dark Web - the preferred workplace for bad guys globally - for any hints that your enterprise's secrets and other intellectual property have been exfiltrated. It ...
1 year ago Darkreading.com Equation
Chinese hackers target Russian govt with upgraded RAT malware - Security researchers at Kaspersky's Global Research and Analysis Team (GReAT) spotted the updated implant while investigating recent attacks where the attackers deployed the RAT malware using a malicious MMC script camouflaged as a Word ...
6 months ago Bleepingcomputer.com CVE-2021-40449
How Stealthy Python Rat Malware is Targeting Windows Systems - Cybersecurity experts have recently alerted Windows users to a new malware threat: a stealthy python-based RAT malware that is specifically targeting Windows systems. The malware, which has been dubbed “Python Rat” by security researchers, has ...
2 years ago Bleepingcomputer.com
Krasue RAT Uses Cross-Kernel Linux Rootkit to Attack Telecoms - Attackers likely tied the creators of the XorDdos Linux remote access Trojan have been wielding a separate Linux RAT for nearly two years without detection, using it to target organizations in Thailand and maintain malicious access to infected ...
1 year ago Darkreading.com
SugarGh0st RAT Delivered via Malicious Windows & JavaScript - RATs allow threat actors to execute the following malicious actions while remaining hidden from the victim:-. Recently, cybersecurity researchers at Cisco Talos discovered a malicious campaign that was found to be delivering a new RAT that's been ...
1 year ago Cybersecuritynews.com
Windows 10 Extended Security Updates Promised for Small Businesses and Home Users - Already common for enterprises, for the first time, individuals will also get the option to pay for extended security updates for a Windows operating system that's out of support. Windows 10 will stop getting free updates, including security fixes, ...
1 year ago Techrepublic.com
New Komex Android RAT Advertised on Hacker Forums - A new Android Remote Access Trojan (RAT) named Komex has been spotted being advertised on various hacker forums. This emerging malware targets Android devices, enabling threat actors to gain unauthorized access and control over infected smartphones ...
15 hours ago Cybersecuritynews.com
FBI Shuts Down Warzone RAT; Cybercriminals Arrested - In a major victory against cybercrime, the FBI has successfully taken down the Warzone RAT malware operation. This operation led to the arrest of two individuals involved in the illicit activities. One of the suspects, 27-year-old Daniel Meli from ...
1 year ago Cysecurity.news
Silver RAT Evades Anti-viruses to Hack Windows Machines - Hackers use Remote Access Trojans to gain unauthorized access and control over a victim's computer remotely. These malicious tools allow hackers to perform various malicious activities like the following without the user's knowledge:-. Recently, ...
1 year ago Cybersecuritynews.com
Windows Incident Response: Human Behavior In Digital Forensics, pt II - Targeted Threat ActorI was working a targeted threat actor response, and while we were continuing to collect information for scoping, so we could move to containment, we found that on one day, from one endpoint, the threat actor pushed their RAT ...
1 year ago Windowsir.blogspot.com
'PhantomBlu' Cyberattackers Backdoor Microsoft Office Users via OLE - A malicious email campaign is targeting hundreds of Microsoft Office users in US-based organizations to deliver a remote access trojan that evades detection, partially by showing up as legitimate software. Threat actors previously have used the RAT ...
1 year ago Darkreading.com
Mozilla Firefox's Premium Dark Web Monitoring Solution - Mozilla, renowned for its commitment to an open and secure internet, has recently made a strategic foray into unexplored realms with the introduction of a subscription-based dark web monitoring service. This bold move signifies the organization's ...
1 year ago Cysecurity.news
Gh0st rat - Gh0st RAT is a Trojan horse for the Windows platform. The “RAT” part of the name refers to the software’s ability to operate as a "Remote Administration Tool". It is a cyber spying computer program used to control infected Windows computers ...
1 year ago

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)