Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

/in

Cybersecurity researchers have identified malicious packages on the open-source Python Package Index (PyPI) repository that deliver an information stealing malware called WhiteSnake Stealer on Windows systems.
The malware-laced packages are named nigpal, figflix, telerer, seGMM, fbdebug, sGMM, myGens, NewGends, and TestLibs111. They have been uploaded by a threat actor named “WS.”
“These

The Hacker News – ​Read More

Ukraine Claims Destruction of 280 Russian Servers, 2 Petabytes Lost

/in

By Deeba Ahmed

Ukraine Reports Multiple Cyberattacks on Critical Russian Government Infrastructure and Private Companies, Leading to Nationwide Disruption and Massive Data Loss.

This is a post from HackRead.com Read the original post: Ukraine Claims Destruction of 280 Russian Servers, 2 Petabytes Lost

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Crypto Stealing PyPI Malware Hits Both Windows and Linux Users

/in

By Deeba Ahmed

FortiGuard Labs’ latest research report reveals a concerning trend: threat actors are leveraging the Python Package Index (PyPI),…

This is a post from HackRead.com Read the original post: Crypto Stealing PyPI Malware Hits Both Windows and Linux Users

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

New Soap2day Domains Emerge Despite Legal Challenges

/in

By Waqas

Soap2day: From Ashes to Pixels – The Curious Case of a Streaming Phoenix.

This is a post from HackRead.com Read the original post: New Soap2day Domains Emerge Despite Legal Challenges

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

23andMe Failed to Detect Account Intrusions for Months

/in

Plus: North Korean hackers get into generative AI, a phone surveillance tool that can monitor billions of devices gets exposed, and ambient light sensors pose a new privacy risk.

Security Latest – ​Read More

The future of biometrics in a zero trust world

/in

Badge operates on a cryptographically zero-knowledge basis, not trusting any party with sensitive data, and offers quantum resistance for future-proof security.Read More

Security News | VentureBeat – ​Read More

Study finds AI ‘revolution’ moving at a crawl in enterprises

/in

A new survey reveals that despite the hype around generative AI, real-world enterprise adoption remains low due to barriers like skills gaps, infrastructure constraints, and overall AI integration challenges.Read More

Security News | VentureBeat – ​Read More

NRC Issues Recommendations for Better Network, Software Security

/in

The Network Resilience Coalition pushes adoption of standards like SSDF, OpenEoX and CISA’s Secure By Design and Default framework.

darkreading – ​Read More

AllaKore RAT Malware Targeting Mexican Firms with Financial Fraud Tricks

/in

Mexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT.
The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin American-based financially motivated threat actor. The campaign has been active since at least 2021.
“Lures use Mexican Social

The Hacker News – ​Read More

Update: Nearly 800 GoAnywhere Instances are Unpatched, Exposed to Critical CVE

/in

The majority of GoAnywhere MFT admin interfaces running on default port settings are hosted in the U.S., with more than 3 in 5 publicly exposed instances hosted on cloud networks operated by Amazon, Microsoft, and Google.

Cyware News – Latest Cyber News – ​Read More