World’s Largest Supply Chain Cyber Attack… And just 5 Cents Stolen?
You probably saw the headlines: the world’s largest npm supply chain attack, chalk and debug-js packages with BILLIONS of downloads...
Malware
Rogue WordPress plugin: Threat hunters uncover credit card skimming campaign targeting e-commerce sites
Rogue WordPress Plugin Found to Steal Credit Card Information in Magecart Campaign Threat hunters have recently uncovered a rogue WordPress...
Carbanak Banking Malware Resurfaces with Updated Tactics in Ransomware Attacks
The banking malware Carbanak has resurfaced with updated tactics, incorporating attack vendors and techniques to diversify its effectiveness, according to...
Mozilla drops Firefox add-on installed by 455,000 for blocking updates
Mozilla has removed two Firefox extensions called 'Bypass' and 'Bypass XM' from the Add-ons store. Both of these add-ons were...
Source code revealed for malware that locks IoT male chastity devices
While ransomware operators are holding companies' private data for multi-million dollar ransom amounts, this one's got your private parts. A...
New Golang malware runs Monero miner on servers
Image credit: QuoteInspector A new strand of Golang malware discovered this week installs the well-known Monero cryptocurrency miner, XMRig on...
Word malware uses GitHub and Imgur pic to run Cobalt Strike script
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads...
Chaes malware strikes Latin American e-commerce sites
Researchers from the Cybereason Nocturnus Team have been keeping tabs on an undetected malware known as "Chaes." The malware discovered...
‘CursedGrabber’ Discord malware possibly linked to Russian and Ukrainian hackers
A new family of Discord malware has been spotted by Sonatype this week. Known as CursedGrabber, multiple strands of this...
Telegram app used by malware to infiltrate online stores
An ongoing trend observed by cybersecurity analysts and malware researchers reveals Telegram messaging service is being abused by malware authors...