Over 100 Malicious Packages Target Popular ML PyPi Libraries

Early on March 28, 2024, the Mend.io research team detected more than 100 malicious packages targeting the most popular machine learning (ML) libraries from the PyPi registry. Among those libraries are Pytorch, Matplotlib, and Selenium.

Cyware News – Latest Cyber News – ​Read More

Prisma Finance Crypto Theft Caps Strange Week of Platform Breaches

Two prominent crypto platforms were compromised this week, with millions worth of cryptocurrency stolen by hackers with confusing motives. The two platforms include the blockchain-based game Munchables and the DeFi platform Prisma Finance.

Cyware News – Latest Cyber News – ​Read More

Easy Privilege Escalation Exploit Lands for Linux Kernels

A Linux privilege-escalation proof-of-concept exploit has been published that, according to the bug hunter who developed it, typically works effortlessly on kernel versions between at least 5.14 and 6.6.14.

Cyware News – Latest Cyber News – ​Read More

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros

RedHat on Friday released an “urgent security alert” warning that two versions of a popular data compression library called XZ Utils (previously LZMA Utils) have been backdoored with malicious code designed to allow unauthorized remote access.
The software supply chain compromise, tracked as CVE-2024-3094, has a CVSS score of 10.0, indicating maximum severity. It impacts XZ Utils

The Hacker News – ​Read More

TheMoon Malware Rises Again with Malicious Botnet for Hire

Outdated SOHO routers and IoT devices being hijacked by TheMoon to operate an anonymous hacker botnet service called Faceless.

darkreading – ​Read More

Cloud Email Filtering Bypass Attack Works 80% of the Time

A majority of enterprises that employ cloud-based email spam filtering services are potentially at risk, thanks to a rampant tendency to misconfigure them.

darkreading – ​Read More

TheMoon Malware Returns: 6,000 Asus Routers Hacked in 72 Hours

By Waqas

A new variant of “TheMoon Malware” has emerged, specifically targeting vulnerable IoT devices, particularly Asus routers.

This is a post from HackRead.com Read the original post: TheMoon Malware Returns: 6,000 Asus Routers Hacked in 72 Hours

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Coro, Building Cybersecurity for SMBs, Locks Down $100M at a $750M Valuation

The lead investor in this round is One Peak, the U.K. later-stage firm focusing on enterprise tech. Previous backers Energy Impact Partners and Balderton Capital are also participating.

Cyware News – Latest Cyber News – ​Read More

Chinese Hackers Target Family Members to Surveil Hard Targets

According to the indictment, between 2015 and 2024, the APT31 group, linked to China’s Ministry of State Security, targeted thousands of U.S. and Western politicians, foreign policy experts, academics, journalists, and democracy activists.

Cyware News – Latest Cyber News – ​Read More

Cisco Warns of Password-Spraying Attacks Targeting Secure Firewall Devices

The company published a document containing recommendations against password spray attacks aimed at Remote Access VPN (RAVPN) services. The IT giant pointed out that the attacks are also targeting third-party VPN concentrators.

Cyware News – Latest Cyber News – ​Read More