156% Increase in Malicious Open Source Software Packages Reported by Sonatype
Sonatype's latest findings reveal a troubling 156% rise in malicious open source software (OSS) packages as usage surges dramatically. As...
Malware
BeaverTail Malware Targets Job Seekers: Protect Yourself from Fake Recruiters
BeaverTail malware is a new threat targeting job seekers, specifically those in the tech industry, by exploiting fake recruiters. A...
FIN7 Gang Exploits AI Deepfake Sites to Spread Malware
The FIN7 gang is exploiting AI deepfake sites to deceive users into downloading malware, according to a recent report by...
Infostealer Hidden in Malicious Ads for League of Legends Downloads
Discover how malicious advertisements disguise an infostealer within League of Legends downloads, putting players at risk. In a surprising turn...
Mobile Crypto Drainer Malware Discovered on Google Play
Mobile crypto drainer malware has recently been identified in an app on Google Play, marking a concerning trend for mobile...
Russian Hackers Target Ukrainian Servicemen: Cyber Warfare Intensifies
Russian hackers are increasingly targeting Ukrainian servicemen through messaging apps, underscoring the escalating cyber conflict between the two nations. A...
Russian Cyber-Attacks Intensify Focus on Ukraine’s Military Infrastructure
Russian cyber-attacks are increasingly targeting Ukraine’s military infrastructure, shifting from broad information theft strategies, as reported by Ukrainian authorities. In...
Octo2 Malware Variant Heightens Mobile Banking Security Risks
The newly identified Octo2 malware variant elevates the threat level for mobile banking security globally, posing significant risks to users....
JavaScript-Based Phishing Attacks: A Shift in Cybercriminal Tactics
In a concerning evolution of cybercrime, threat actors are increasingly adopting JavaScript-based phishing attacks as their primary method of infection....
Phishing Sites Target Mobile Devices: 82% Now Focus on Handheld Threats
Recent trends reveal that a staggering 82% of phishing sites are now directed at mobile devices, according to the latest...
Lazarus Group’s VMConnect Campaign: New Threats Targeting Developers
The Lazarus Group is intensifying its VMConnect campaign by preying on developers with malicious software packages found in open source...
GlobalProtect VPN Exploited: New WikiLoader Malware Variant Discovered
Palo Alto Networks has unveiled a concerning trend where its GlobalProtect VPN software has been exploited to distribute a new...
Voldemort Malware Targets Over 70 Organizations Worldwide
The recently identified Voldemort malware has caused significant disruptions, impacting over 70 organizations across various sectors, showcasing a sophisticated cyber-espionage...
North Korean Hackers Exploit New npm Package Attacks to Target Developers
A recent analysis highlights a surge in attacks linked to North Korean hackers, focusing on the npm ecosystem to compromise...
Chinese Velvet Ant Exploits Cisco Zero-Day for Custom Malware Deployment
The Chinese Velvet Ant cyber espionage group is leveraging a Cisco zero-day vulnerability to deploy custom malware, raising significant security...
LummaC2 Infostealer: Resurgence of Obfuscated PowerShell Tactics
LummaC2, a potent infostealer malware, has resurfaced with advanced obfuscated PowerShell techniques threatening sensitive data integrity. LummaC2 is an infostealer...
New PyPI Malware “Pytoileur” Steals Crypto and Evades Detection
Cybersecurity researchers have uncovered “pytoileur,” a malicious package on the Python Package Index (PyPI). The package, posing as an “API Management...
Europol-Led Operation Endgame Hits Botnet, Ransomware Networks
A new operation coordinated by Europol has targeted several significant malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader, Bumblebee and Trickbot. Dubbed...
