Malware & Threats

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI 2024-10-02 at 15:46 By Ionut Arghire Multiple Python packages referencing dependencies containing cryptocurrency-stealing code were published to PyPI. The post Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React […]

React to this headline:

Loading spinner

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI Read More »

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors 2024-09-26 at 15:01 By Ionut Arghire A malicious campaign is targeting transportation and logistics organizations in North America with various malware families. The post US Transportation and Logistics Firms Targeted With Infostealers, Backdoors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors Read More »

AI-Generated Malware Found in the Wild

AI-Generated Malware Found in the Wild 2024-09-24 at 20:16 By Kevin Townsend HP has intercepted an email campaign comprising a standard malware payload delivered by an AI-generated dropper. The post AI-Generated Malware Found in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

AI-Generated Malware Found in the Wild Read More »

Necro Trojan Infects Google Play Apps With Millions of Downloads

Necro Trojan Infects Google Play Apps With Millions of Downloads 2024-09-23 at 19:16 By Ionut Arghire The Necro trojan was found in two Android applications in Google Play with a combined downloads count of over 11 million. The post Necro Trojan Infects Google Play Apps With Millions of Downloads appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Necro Trojan Infects Google Play Apps With Millions of Downloads Read More »

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China 2024-09-20 at 15:46 By Ionut Arghire GreyNoise has observed millions of spoofed IPs flooding internet providers with web traffic primarily focusing on TCP connections. The post Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China Read More »

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted 2024-09-20 at 15:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Disney will stop using Slack following a hack, Binance warns of malware, and US-Taiwan defense conference targeted by hackers. The post In Other News: Disney Ditches Slack, Binance

React to this headline:

Loading spinner

In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted Read More »

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military 2024-09-18 at 20:16 By Ryan Naraine Black Lotus Labs estimates that more than 200,000 routers, network-attached storage servers, and IP cameras have been ensnared in the botnet. The post Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

React to this headline:

Loading spinner

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military Read More »

New ‘Hadooken’ Linux Malware Targets WebLogic Servers

New ‘Hadooken’ Linux Malware Targets WebLogic Servers 2024-09-13 at 15:01 By Ionut Arghire The recently observed Hadooken malware targeting Oracle WebLogic applications is linked to multiple ransomware families. The post New ‘Hadooken’ Linux Malware Targets WebLogic Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

New ‘Hadooken’ Linux Malware Targets WebLogic Servers Read More »

Iranian Hackers Targeting Iraqi Government: Security Firm

Iranian Hackers Targeting Iraqi Government: Security Firm 2024-09-12 at 13:46 By Eduard Kovacs Hackers believed to be operating on behalf of the Iranian government have deployed malware to Iraqi government networks.  The post Iranian Hackers Targeting Iraqi Government: Security Firm appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Iranian Hackers Targeting Iraqi Government: Security Firm Read More »

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens 2024-09-11 at 16:16 By Eduard Kovacs Noise generated by the pixels on a screen can be leveraged to exfiltrate data from air-gapped computers in what is called a PIXHELL attack. The post PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens appeared first on SecurityWeek. This

React to this headline:

Loading spinner

PIXHELL Attack Allows Air-Gap Jumping via Noise From Screens Read More »

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks 2024-09-09 at 14:31 By Eduard Kovacs A recently patched SonicWall vulnerability tracked as CVE-2024-40766 may have been exploited in ransomware attacks. The post Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks Read More »

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa 2024-08-29 at 16:46 By Ryan Naraine Google TAG publishes evidence showing identical or striking similarities between exploits used by Russia’s APT29 and commercial spyware vendors. The post Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa appeared first on SecurityWeek.

React to this headline:

Loading spinner

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa Read More »

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE 2024-08-29 at 13:01 By Eduard Kovacs The Iran-linked state-sponsored hacker group tracked as Peach Sandstorm has started using a new backdoor in attacks aimed at the US and UAE. The post Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

React to this headline:

Loading spinner

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE Read More »

Malware Delivered via Malicious Pidgin Plugin, Signal Fork

Malware Delivered via Malicious Pidgin Plugin, Signal Fork 2024-08-28 at 16:01 By Eduard Kovacs Threat actors delivered malware via instant messaging applications, including a malicious Pidgin plugin and an unofficial Signal fork. The post Malware Delivered via Malicious Pidgin Plugin, Signal Fork appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Malware Delivered via Malicious Pidgin Plugin, Signal Fork Read More »

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI 2024-08-23 at 17:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: FAA improving cyber rules for airplanes, NGate Android malware used to steal cash from ATMs, abusing Slack AI to steal data. The post

React to this headline:

Loading spinner

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI Read More »

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware 2024-08-22 at 19:01 By Ryan Naraine More than two years after the Log4j crisis, organizations are still being hit by crypto-currency miners and backdoor scripts. The post Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware Read More »

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack 2024-08-16 at 17:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: there are 400 CVE Numbering Authorities, crash reports can be a valuable source of information, and Schlatter was hit by a cyberattack. The post In Other News: 400 CNAs, Crash Reports,

React to this headline:

Loading spinner

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack Read More »

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign 2024-08-16 at 17:46 By Ionut Arghire Security researchers at Palo Alto Networks discover a threat actor extorting organizations after compromising their cloud environments using inadvertently exposed environment variables. The post Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign Read More »

New Banshee Stealer macOS Malware Priced at $3,000 Per Month

New Banshee Stealer macOS Malware Priced at $3,000 Per Month 2024-08-16 at 14:46 By Eduard Kovacs Russian cybercriminals are advertising a new macOS malware, Banshee Stealer, capable of stealing passwords, browser data, and crypto wallets.  The post New Banshee Stealer macOS Malware Priced at $3,000 Per Month appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

New Banshee Stealer macOS Malware Priced at $3,000 Per Month Read More »

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw 2024-08-15 at 20:01 By Ryan Naraine Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack. The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on

React to this headline:

Loading spinner

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw Read More »

Scroll to Top