Malicious Chimera Turns Larcenous on Python Package Index

/in

Unlike typical data-stealing malware, this attack tool targets data specific to corporate and cloud infrastructures in order to execute supply chain attacks.

darkreading – ​Read More

Anubis Ransomware-as-a-Service Kit Adds Data Wiper

/in

The threat of wiping files and servers clean gives Anubis affiliates yet another way to leverage ransomware victims who may be hesitant to pay to get their data back, Trend Micro said.

darkreading – ​Read More

1Password and AWS join forces to secure AI, cloud environments for the enterprise

/in

Credit: VentureBeat made with Midjourney

1Password signs strategic AWS partnership, quadrupling contract sizes as enterprises demand AI-era security tools to protect unmanaged devices and applications.Read More

Security News | VentureBeat – ​Read More

US offering $10 million for info on Iranian hackers behind IOControl malware

/in

The U.S. State Department said it is looking for information on hackers linked to Iran’s Islamic Revolutionary Guard Corps.

The Record from Recorded Future News – ​Read More

Washington Post Staffer Emails Targeted in Cyber Breach

/in

Journalists’ Microsoft accounts were breached, which would have given attackers access to emails of staff reporters covering national security, economic policy, and China.

darkreading – ​Read More

U.S. Seizes $7.74M in Crypto Tied to North Korea’s Global Fake IT Worker Network

/in

The U.S. Department of Justice (DoJ) said it has filed a civil forfeiture complaint in federal court that targets over $7.74 million in cryptocurrency, non-fungible tokens (NFTs), and other digital assets allegedly linked to a global IT worker scheme orchestrated by North Korea.
“For years, North Korea has exploited global remote IT contracting and cryptocurrency ecosystems to evade U.S.

The Hacker News – ​Read More

Report Links Los Pollos and RichAds to Malware Traffic Operations

/in

New research by Infoblox Threat Intel exposes a hidden alliance between major cybercrime groups like VexTrio and seemingly…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

‘Water Curse’ Targets Infosec Pros Via Poisoned GitHub Repositories

/in

The emerging threat group attacks the supply chain via weaponized repositories posing as legitimate pen-testing suites and other tools that are poisoned with malware.

darkreading – ​Read More

As grocery shortages persist, UNFI says it’s recovering from cyberattack

/in

Whole Foods and other grocery stores reported shortages following the cyberattack

Security News | TechCrunch – ​Read More

Car sharing giant Zoomcar says hacker accessed personal data of 8.4 million users

/in

The personal data includes customer names, phone numbers, and car registration numbers.

Security News | TechCrunch – ​Read More