security Archives - Page 61 of 730

StackExchange abused to spread malicious PyPi packages as answers

Threat actors uploaded malicious Python packages to the PyPI repository and promoted them through the StackExchange online question and answer platform. The packages are named ‘spl-types,’ ‘raydium,’ ‘sol-structs,’ ‘sol-instruct,’ and ‘raydium-sdk’ and download scripts that steal sensitive data from the browser, messaging apps (Telegram, Signal, Session), and cryptocurrency wallet details (Exodus, Electrum, Monero). The info-stealing malware can also exfiltrate files […]

01 Aug

Hackers abuse free TryCloudflare to deliver remote access malware

Researchers are warning of threat actors increasingly abusing the Cloudflare Tunnel service in malware campaigns that usually deliver remote access trojans (RATs). This cybercriminal activity was frst detected in February and it is leveraging the TryCloudflare free service to distribute multiple RATs, including AsyncRAT, GuLoader, VenomRAT, Remcos RAT, and Xworm. Campaigns attributed to the same activity […]

01 Aug

UK takes down major ‘Russian Coms’ caller ID spoofing platform

The United Kingdom’s National Crime Agency (NCA) has shut down Russian Coms, a major caller ID spoofing platform used by hundreds of criminals to make over 1.8 million scam calls. Their targets included people from over 107 countries, including the United Kingdom, the United States, New Zealand, Norway, and France. Russian Coms was established in […]

31 Jul

Credit card users get mysterious shopify-charge.com charges

People worldwide report seeing mysterious $1 or $0 charges from Shopify-charge.com appearing on their credit card bills, even when they did not attempt to purchase anything. The charges have no rhyme or reason to them and are seen on physical and virtual credit cards of all types, including those from Discover, Monzo, Capital One, and other Visa […]

31 Jul

DigiCert to delay cert revocations for critical infrastructure

DigiCert urges critical infrastructure operators to request a delay if they cannot reissue their certificates, as required by an ongoing certificate mass-revocation process announced on Tuesday. The company is mass-revoking transport layer security (TLS) certificates because of a non-compliance issue with domain control verification (DCV). This procedure required 6,807 impacted customers to reissue 83,267 certificates […]

31 Jul

OneBlood’s virtual machines encrypted in ransomware attack

OneBlood, a large not-for-profit blood center that serves hospitals and patients in the United States, is dealing with an IT systems outage caused by a ransomware attack. The organization plays a critical role in ensuring a stable blood supply to the Southeastern part of the country, collecting, testing, and distributing a large volume of blood […]

31 Jul

CISA and FBI: DDoS attacks won’t impact US election integrity

CISA and the FBI said today that Distributed Denial of Service (DDoS) attacks targeting election infrastructure will, at most, hinder public access to information but will have no impact on the integrity or security of the 2024 U.S. general election processes. While threat actors have falsely claimed in the past that DDoS attacks compromised voting […]

31 Jul

Google ads push fake Google Authenticator site installing malware

Google has fallen victim to its own ad platform, allowing threat actors to create fake Google Authenticator ads that push the DeerStealer information-stealing malware. For years, malicious advertising (malvertising) campaigns have targeted the Google search platform, where threat actors place ads to impersonate well-known software sites that install malware on visitors’ devices. To make matters […]

30 Jul

Massive SMS stealer campaign infects Android devices in 113 countries

A malicious campaign targeting Android devices worldwide utilizes thousands of Telegram bots to infect devices with SMS-stealing malware and steal one-time 2FA passwords (OTPs) for over 600 services. Zimperium researchers discovered the operation and have been tracking it since February 2022. They report finding at least 107,000 distinct malware samples associated with the campaign. The […]

30 Jul

Dark Angels ransomware receives record-breaking $75 million ransom

A Fortune 50 company paid a record-breaking $75 million ransom payment to the Dark Angels ransomware gang, according to a report by Zscaler ThreatLabz. “In early 2024, ThreatLabz uncovered a victim who paid Dark Angels $75 million, higher than any publicly known amount— an achievement that’s bound to attract the interest of other attackers looking […]

Tag: security

StackExchange abused to spread malicious PyPi packages as answers

Hackers abuse free TryCloudflare to deliver remote access malware

UK takes down major ‘Russian Coms’ caller ID spoofing platform

Credit card users get mysterious shopify-charge.com charges

DigiCert to delay cert revocations for critical infrastructure

OneBlood’s virtual machines encrypted in ransomware attack

CISA and FBI: DDoS attacks won’t impact US election integrity

Google ads push fake Google Authenticator site installing malware

Massive SMS stealer campaign infects Android devices in 113 countries

Dark Angels ransomware receives record-breaking $75 million ransom