Supply-chain attack on NPM Package UAParser, which has millions of daily downloads
The U.S. CISA warned of crypto-mining malware hidden in a popular JavaScript NPM library, named UAParser.js, which has millions of weekly downloads.
Publicités
malware
Groove ransomware group calls on other ransomware gangs to hit US public sector
Groove ransomware operators call on other ransomware groups to stop competing and join the forces to fight against the US.
Lire la suiteDarkSide ransomware operators move 6.8M worth of Bitcoin after REvil shutdown
Darkside and BlackMatter ransomware operators have moved a large amount of their Bitcoin reserves after the recent shutdown of REvil’s
Lire la suiteFIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks
FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting
Lire la suiteFiveSys, a new digitally-signed rootkit spotted by Bitdefender experts
Bitdefender researchers discovered a new Rootkit named FiveSys that abuses Microsoft-Issued Digital Signature signature to evade detection. FiveSys is a
Lire la suiteEvil Corp rebrands their ransomware, this time is the Macaw Locker
Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from
Lire la suiteYouTube creators’ accounts hijacked with cookie-stealing malware
A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated
Lire la suitePurpleFox botnet variant uses WebSockets for more secure C2 communication
Researchers warn of a new evolution of the PurpleFox botnet, operators included exploits and leverage WebSockets for C2 communication. Researchers
Lire la suiteChina-linked LightBasin group accessed calling records from telcos worldwide
China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. A
Lire la suiteExperts found many similarities between the new Karma Ransomware and Nemty variants
Sentinel Labs experts have analyzed the new Karma ransomware and speculate it represents an evolution of the Nemty ransomware operation.
Lire la suite