Backdoored Malware Reels in Newbie Cybercriminals
Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022.
darkreading – Read More
Unsecured Database Exposes Data of 3.6 Million Passion.io Creators
A massive data leak has put the personal information of over 3.6 million app creators, influencers, and entrepreneurs…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Iran-linked hackers target Kurdish and Iraqi officials in long-running cyberespionage campaign
The group has been operating since at least 2017, initially breaching systems belonging to the Kurdistan Regional Government and have expanded their reach to the Central Government of Iraq as well as a telecommunications provider in Uzbekistan.
The Record from Recorded Future News – Read More
Popular Chrome Extensions Leak API Keys, User Data via HTTP and Hardcoded Credentials
Cybersecurity researchers have flagged several popular Google Chrome extensions that have been found to transmit data in HTTP and hard-code secrets in their code, exposing users to privacy and security risks.
“Several widely used extensions […] unintentionally transmit sensitive data over simple HTTP,” Yuanjing Guo, a security researcher in the Symantec’s Security Technology and Response
The Hacker News – Read More
Cybercriminals are stealing business Salesforce data with this simple trick – don’t fall for it
The goal is to steal large amounts of confidential data in an attempt to extort the victims. Here’s how it works.
Latest stories for ZDNET in Security – Read More
Questions Swirl Around ConnectWise Flaw Used in Attacks
ConnectWise issued a patch to stave off attacks on ScreenConnect customers, but the company’s disclosures don’t explain what the vulnerability is and when it was first exploited.
darkreading – Read More
Nearly 94 Billion Stolen Cookies Found on Dark Web
Cybersecurity experts warn of widespread data exposure as a recent investigation reveals a staggering number of internet cookies…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Ukrainian police arrest hacker who used hosting firm’s servers to mine cryptocurrency
The suspect, a native of the central Ukrainian city of Poltava, had been conducting cyberattacks since at least 2018, police said.
The Record from Recorded Future News – Read More
Anthropic unveils custom AI models for U.S. national security customers
Anthropic says that it has released a new set of AI models tailored for U.S. national security customers. The new models, a custom set of “Claude Gov” models, were “built based on direct feedback from our government customers to address real-world operational needs,” writes Anthropic in a blog post. Compared to Anthropic’s consumer- and enterprise-focused […]
Security News | TechCrunch – Read More
Backdoored Open Source Malware Repositories Target Novice Cybercriminals
A threat actor has been creating backdoored open source malware repositories to target novice cybercriminals and game cheaters.
The post Backdoored Open Source Malware Repositories Target Novice Cybercriminals appeared first on SecurityWeek.
SecurityWeek – Read More