Malware & Threats

‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools

Malware, Malware & Threats /

‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools 09/11/2023 at 17:46 By Ionut Arghire Checkmarx uncovers a malicious campaign targeting Python developers with malware that takes over their systems. The post ‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Loading spinner

‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools Read More »

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild

DoS, exploited, Malware & Threats /

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild 09/11/2023 at 13:32 By Ionut Arghire CISA says an SLP vulnerability allowing for a DoS amplification factor of 2,000 is being exploited in attacks. The post CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild appeared first on SecurityWeek. This

React to this headline:

Loading spinner

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild Read More »

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes

Cyberwarfare, Featured, ICS, ICS malware, ICS/OT, Malware & Threats, Mandiant, Nation-State, OT, Russia, Sandworm, Ukraine /

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes 09/11/2023 at 12:16 By Ryan Naraine Mandiant says Russia’s Sandworm hackers used a novel OT attack to cause power outages that coincided with mass missile strikes on critical infrastructure across Ukraine. The post Russian Hackers Used Novel OT Attack to Disrupt

React to this headline:

Loading spinner

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes Read More »

Dropper Service Bypassing Android Security Restrictions to Install Malware

Android, Malware & Threats, mobile malware /

Dropper Service Bypassing Android Security Restrictions to Install Malware 08/11/2023 at 14:01 By Ionut Arghire ThreatFabric warns of a dropper service bypassing recent Android security restrictions to install spyware and banking trojans. The post Dropper Service Bypassing Android Security Restrictions to Install Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Dropper Service Bypassing Android Security Restrictions to Install Malware Read More »

New MacOS Malware Linked to North Korean Hackers

macOS, Malware, Malware & Threats, Nation-State, North Korea /

New MacOS Malware Linked to North Korean Hackers 07/11/2023 at 18:04 By Kevin Townsend New macOS malware, tracked by Jamf as ObjCShellz, is likely being used by North Korean hackers to target crypto exchanges The post New MacOS Malware Linked to North Korean Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

New MacOS Malware Linked to North Korean Hackers Read More »

Iranian APT Targets Israeli Education, Tech Sectors With New Wipers

Malware & Threats /

Iranian APT Targets Israeli Education, Tech Sectors With New Wipers 06/11/2023 at 15:01 By Ionut Arghire The Iran-linked APT Agrius has been targeting higher education and technology organizations in Israel with new wipers. The post Iranian APT Targets Israeli Education, Tech Sectors With New Wipers appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Iranian APT Targets Israeli Education, Tech Sectors With New Wipers Read More »

Apache ActiveMQ Vulnerability Exploited as Zero-Day

exploited, Malware & Threats, Zero-Day /

Apache ActiveMQ Vulnerability Exploited as Zero-Day 04/11/2023 at 19:31 By Eduard Kovacs The recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 has been exploited as a zero-day since at least October 10. The post Apache ActiveMQ Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Apache ActiveMQ Vulnerability Exploited as Zero-Day Read More »

North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks

Mac malware, Malware & Threats, North Korea /

North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks 04/11/2023 at 19:31 By Ionut Arghire Security researchers uncover new macOS and Windows malware associated with the North Korea-linked Lazarus Group. The post North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks Read More »

Mozi Botnet Likely Killed by Its Creators

botnet, Malware & Threats, takedown /

Mozi Botnet Likely Killed by Its Creators 01/11/2023 at 20:03 By Eduard Kovacs The recent shutdown of the Mozi botnet is believed to have been carried out by its creators, possibly forced by Chinese authorities.  The post Mozi Botnet Likely Killed by Its Creators appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Mozi Botnet Likely Killed by Its Creators Read More »

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks

Check Point, Cyberwarfare, Iran, Israel, LionTail, Malware & Threats, Nation-State, Scarred Manticore /

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks 01/11/2023 at 17:31 By Ionut Arghire Check Point reports that an Iranian APT has been observed using a new malware framework in targeted attacks in the Middle East. The post Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks Read More »

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway

Citrix, Citrix Bleed, exploited, Malware & Threats, Vulnerabilities /

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway 01/11/2023 at 17:31 By Ionut Arghire Multiple threat actors are exploiting CVE-2023-4966, aka Citrix Bleed, a critical vulnerability in NetScaler ADC and Gateway. The post Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway Read More »

Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution

Malware, Malware & Threats /

Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution 01/11/2023 at 16:01 By Ionut Arghire Threat actors are constantly publishing malicious NuGet packages to automatically execute code on developers’ machines. The post Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution Read More »

Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack

cloud security, Fraud & Identity Theft, Malware & Threats, Slack, Wiki-Slack, Wikipedia /

Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack 30/10/2023 at 16:46 By Ionut Arghire Researchers document the Wiki-Slack attack, a new technique that uses modified Wikipedia pages to target end users on Slack. The post Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack appeared first on SecurityWeek.

React to this headline:

Loading spinner

Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack Read More »

Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools

Featured, Malware, Malware & Threats, NSA /

Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools 27/10/2023 at 17:47 By Ionut Arghire The StripedFly malware has APT-like capabilities, but remained unnoticed for five years, posing as a cryptocurrency miner. The post Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools Read More »

‘YoroTrooper’ Espionage Group Linked to Kazakhstan

APT, Malware & Threats /

‘YoroTrooper’ Espionage Group Linked to Kazakhstan 25/10/2023 at 23:46 By Ionut Arghire Cisco links the espionage-focused ‘YoroTrooper’ threat actor to Kazakhstan. The post ‘YoroTrooper’ Espionage Group Linked to Kazakhstan appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

‘YoroTrooper’ Espionage Group Linked to Kazakhstan Read More »

Apple Ships Major iOS, macOS Security Updates

apple, Endpoint Security, iOS, macOS, Malware & Threats, Mobile & Wireless, Vulnerabilities, WebKit /

Apple Ships Major iOS, macOS Security Updates 25/10/2023 at 23:01 By Ryan Naraine Apple patches dozens of serious security flaws in its macOS and iOS platforms, warning that hackers could launch code execution exploits. The post Apple Ships Major iOS, macOS Security Updates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Apple Ships Major iOS, macOS Security Updates Read More »

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day

exploited, Malware & Threats, Roundcube, Russia, Zero-Day /

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day 25/10/2023 at 19:17 By Ionut Arghire Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments. The post Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day Read More »

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

exploit, iOS, Kaspersky, Malware & Threats, Operation Triangulation /

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected 24/10/2023 at 22:01 By Ionut Arghire Kaspersky analyzes the stealth techniques that were used in the ‘Operation Triangulation’ iOS zero-click attacks. The post Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected Read More »

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant

Cisco, Malware & Threats, Vulnerabilities, vulnerability, Zero-Day /

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant 24/10/2023 at 20:02 By Eduard Kovacs The number of Cisco devices hacked via recent zero-days remains high, but the attackers have updated their implant. The post Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant appeared first on

React to this headline:

Loading spinner

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant Read More »

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops

Cisco, Featured, Malware & Threats, Vulnerabilities, Zero-Day /

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops 23/10/2023 at 21:49 By Eduard Kovacs Cisco has found a second zero-day vulnerability that has been exploited in recent attacks as the number of hacked devices has started dropping. The post Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops appeared first

React to this headline:

Loading spinner

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops Read More »

Scroll to Top