Lucene search
K

9 matches found

The Hacker News
The Hacker News
added 2026/04/16 10:20 a.m.12 views

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

A "novel" social engineering campaign has been observed abusing Obsidian, a cross-platform note-taking application, as an initial access vector to distribute a previously undocumented Windows remote access trojan called PHANTOMPULSE in attacks targeting individuals in the financial and...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/11 6:50 a.m.10 views

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

The North Korea-linked threat actor known as UNC1069 has been observed targeting the cryptocurrency sector to steal sensitive data from Windows and macOS systems with the ultimate goal of facilitating financial theft. "The intrusion relied on a social engineering scheme involving a compromised...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/03 12:22 p.m.26 views

Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware

The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented Go-based backdoor called GolangGhost on Windows and macOS systems. The new...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2024/10/24 9:53 a.m.37 views

Lazarus Group Exploits Google Chrome Vulnerability to Control Infected Devices

The North Korean threat actor known as Lazarus Group has been attributed to the zero-day exploitation of a now-patched security flaw in Google Chrome to seize control of infected devices. Cybersecurity vendor Kaspersky said it made the discovery after it came across a novel attack chain in May 20...

9.6CVSS9.2AI score0.15111EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2024/08/21 12:0 a.m.6 views

PT-2024-5817

The vulnerable software is Google Chrome, specifically the V8 JavaScript engine. The vulnerability is a type confusion issue that can be exploited to execute arbitrary code on affected systems. The vulnerable versions are prior to 128.0.6613.84. To exploit this vulnerability, an attacker can use ...

9.8CVSS7.2AI score0.19272EPSS
Exploits14References366
The Hacker News
The Hacker News
added 2023/08/30 11:27 a.m.36 views

Malicious npm Packages Aim to Target Developers for Source Code Theft

An unknown threat actor is leveraging malicious npm packages to target developers with an aim to steal source code and configuration files from victim machines, a sign of how threats lurk consistently in open-source repositories. "The threat actor behind this campaign has been linked to malicious...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/04 10:33 a.m.21 views

Malicious npm Packages Found Exfiltrating Sensitive Data from Developers

Cybersecurity researchers have discovered a new bunch of malicious packages on the npm package registry that are designed to exfiltrate sensitive developer information. Software supply chain firm Phylum, which first identified the "test" packages on July 31, 2023, said they "demonstrated increasi...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/13 9:7 a.m.3 views

Lazarus Hacker Group Evolves Tactics, Tools, and Targets in DeathNote Campaign

The North Korean threat actor known as the Lazarus Group has been observed shifting its focus and rapidly evolving its tools and tactics as part of a long-running campaign called DeathNote. While the nation-state adversary is known for persistently singling out the cryptocurrency sector, recent...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/11 6:43 a.m.62 views

Hackers Used Fake Job Offer to Hack and Steal $540 Million from Axie Infinity

The $540 million hack of Axie Infinity's Ronin Bridge in late March 2022 was the consequence of one of its former employees getting tricked by a fraudulent job offer on LinkedIn, it has emerged. According to a report from The Block published last week citing two people familiar with the matter, a...

0.3AI score
Exploits0
Rows per page
Query Builder