UN Peace Operations Under Fire From State-Sponsored Hackers
The international body isn’t doing enough to protect details on dissidents and activists gathered by peacekeeping operations, particularly across Central Africa.
darkreading – Read More
Hackers Target macOS Users with Malicious Ads Spreading Stealer Malware
Malicious ads and bogus websites are acting as a conduit to deliver two different stealer malware, including Atomic Stealer, targeting Apple macOS users.
The ongoing infostealer attacks targeting macOS users may have adopted different methods to compromise victims’ Macs, but operate with the end goal of stealing sensitive data, Jamf Threat Labs said in a report published Friday.
One
The Hacker News – Read More
Malicious Backdoor Spotted in Linux Compression Library XZ
This supply-chain compromise may have been caught early enough to prevent widespread exploitation, and it may only mainly affect bleeding-edge distros that picked up the latest xz versions right away.
Cyware News – Latest Cyber News – Read More
Lessons From the LockBit Takedown
The truly satisfying law enforcement takedown of the ransomware giant shows the value of collaborating — and fighting back.
darkreading – Read More
Over 100 Malicious Packages Target Popular ML PyPi Libraries
Early on March 28, 2024, the Mend.io research team detected more than 100 malicious packages targeting the most popular machine learning (ML) libraries from the PyPi registry. Among those libraries are Pytorch, Matplotlib, and Selenium.
Cyware News – Latest Cyber News – Read More
Prisma Finance Crypto Theft Caps Strange Week of Platform Breaches
Two prominent crypto platforms were compromised this week, with millions worth of cryptocurrency stolen by hackers with confusing motives. The two platforms include the blockchain-based game Munchables and the DeFi platform Prisma Finance.
Cyware News – Latest Cyber News – Read More
Easy Privilege Escalation Exploit Lands for Linux Kernels
A Linux privilege-escalation proof-of-concept exploit has been published that, according to the bug hunter who developed it, typically works effortlessly on kernel versions between at least 5.14 and 6.6.14.
Cyware News – Latest Cyber News – Read More
Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros
RedHat on Friday released an “urgent security alert” warning that two versions of a popular data compression library called XZ Utils (previously LZMA Utils) have been backdoored with malicious code designed to allow unauthorized remote access.
The software supply chain compromise, tracked as CVE-2024-3094, has a CVSS score of 10.0, indicating maximum severity. It impacts XZ Utils
The Hacker News – Read More
TheMoon Malware Rises Again with Malicious Botnet for Hire
Outdated SOHO routers and IoT devices being hijacked by TheMoon to operate an anonymous hacker botnet service called Faceless.
darkreading – Read More
Cloud Email Filtering Bypass Attack Works 80% of the Time
A majority of enterprises that employ cloud-based email spam filtering services are potentially at risk, thanks to a rampant tendency to misconfigure them.
darkreading – Read More