malware
-
Advanced Malware Campaign Targets WordPress Sites, Poses Major Risks to Users
Cybersecurity experts reveal a sophisticated malware campaign targeting WordPress websites, capable of stealing sensitive information and evading detection. Discovered by the Wordfence team, the malware employs innovative tactics, including fake checkout forms and Cloudflare brand impersonation.
-
North Korea-Linked Malicious npm Packages Expose Developers to Security Risks
Cybersecurity researchers have uncovered a new wave of malicious npm packages linked to North Korean threat actors, raising significant concerns for software developers. The covert operation targets job seekers and developers, exposing them to sophisticated supply chain attacks designed to steal sensitive information and compromise systems.
-
APT28 Hackers Exploit Signal to Deploy Advanced Malware Against Ukraine
CERT-UA has issued an urgent warning about APT28’s sophisticated malware deployment using Signal to target Ukrainian entities. The introduction of BEARDSHELL and COVENANT signifies an alarming escalation in cyber threats.
-
Cybersecurity Alert: Hackers Target 65 Microsoft Exchange Servers Worldwide
Hackers are increasingly targeting Microsoft Exchange servers to inject credential-harvesting keyloggers, affecting 65 organizations across 26 countries. Positive Technologies reported these attacks utilize JavaScript vulnerabilities, emphasizing the urgent need for enhanced cybersecurity practices.
-
New XDigo Malware Targets Eastern European Governments Using LNK Flaw
The XDigo malware, linked to the cyber espionage group XDSpy, has been identified as a prominent threat targeting Eastern European government agencies, exploiting a vulnerability within Windows shortcut files for its deployment.
-
Surge in Android Malware: AntiDot Threats Compromise Thousands of Devices
Researchers have uncovered a significant surge in Android malware, particularly the AntiDot strain, which has compromised thousands of devices through sophisticated phishing campaigns and Malware-as-a-Service distribution.
-
New Campaign Uncovers 67 Trojanized GitHub Repositories Targeting Python Users
Cybersecurity experts have revealed a new campaign identifying 67 trojanized GitHub repositories that falsely advertise Python hacking tools, delivering malicious software instead. This campaign highlights the significant risks of using open-source repositories for developers.
-
North Korean Hackers Target Crypto Job Seekers with Sophisticated Malware Scam
Recent research from Cisco Talos reveals a rise in cyber attacks targeting crypto job seekers, attributed to a North Korea-aligned group known as Famous Chollima, using sophisticated malware disguised as video drivers.
-
New Malware Campaign Exploits Cloudflare Tunnels to Deliver Malicious Payloads
A new malware campaign, codenamed SERPENTINE#CLOUD, is exploiting Cloudflare Tunnel subdomains to distribute malicious payloads via phishing emails. This sophisticated attack targets users across multiple regions and employs advanced techniques to evade detection.
-
Water Curse: A New Threat Actor Targeting GitHub to Distribute Malware
Researchers have unveiled Water Curse, a new threat actor leveraging GitHub repositories to distribute malware. The malware enables extensive data exfiltration and remote access, underscoring the risks of supply chain attacks through legitimate platforms.
