Malicious npm Packages Mimicking ‘noblox.js’ Compromise Roblox Developers’ Systems

/in

Roblox developers are the target of a persistent campaign that seeks to compromise systems through bogus npm packages, once again underscoring how threat actors continue to exploit the trust in the open-source ecosystem to deliver malware.
“By mimicking the popular ‘noblox.js’ library, attackers have published dozens of packages designed to steal sensitive data and compromise systems,” Checkmarx

The Hacker News – ​Read More

Ransomware Gangs Pummel Southeast Asia

/in

Successful ransomware attacks against organizations in Asia continue at peak levels in 2024 following a wave of high-profile data breaches last year.

darkreading – ​Read More

North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

/in

A recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign designed to deliver the FudModule rootkit.
The development is indicative of the persistent efforts made by the nation-state adversary, which had made a habit of incorporating rafts of Windows zero-day exploits into its arsenal in recent months.

The Hacker News – ​Read More

New Voldemort Malware Uses Google Sheets to Target Key Sectors Globally

/in

The Voldemort Malware campaign is spreading globally with over 20,000 phishing emails to more than 70 organizations, with…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Taylor Swift Concert Terror Plot Was Thwarted by Key CIA Tip

/in

Plus: China-linked hackers infiltrate US internet providers, authorities crack down on a major piracy operation, and a ransomware gang claims attacks during the Paris Olympics.

Security Latest – ​Read More

New Snake Keylogger Variant Slithers Into Phishing Campaigns

/in

The attack starts with a phishing email disguised as a fund transfer notification, with an attached Excel file named “swift copy.xls” that triggers the deployment of Snake Keylogger on the victim’s computer upon opening.

Cyware News – Latest Cyber News – ​Read More

Rocinante: The Trojan Horse That Wanted to Fly

/in

Once installed, the Rocinante malware prompts the victim to grant Accessibility Services and displays phishing screens tailored to different banks to steal personal information.

Cyware News – Latest Cyber News – ​Read More

Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled

/in

The QiAnXin Threat Intelligence Center has revealed the details of “Operation DevilTiger,” a cyber espionage campaign carried out by the elusive APT-Q-12 group, also known as “Pseudo Hunter.”

Cyware News – Latest Cyber News – ​Read More

FBI: RansomHub Ransomware Breached 210 Victims Since February 2024

/in

The ransomware operation focuses on data theft extortion rather than encrypting files, with victims facing the threat of stolen data being leaked or sold if negotiations fail.

Cyware News – Latest Cyber News – ​Read More

Godzilla Fileless Backdoors Targeting Atlassian Confluence

/in

The Godzilla fileless backdoor relies on a complex series of actions, such as cryptographic operations, class loading, and dynamic injection, to establish unauthorized access.

Cyware News – Latest Cyber News – ​Read More