8 matches found
FBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulation
The U.S. Department of Justice DoJ has announced arrests and charges against several individuals and entities in connection with allegedly manipulating digital asset markets as part of a widespread fraud operation. The law enforcement action – codenamed Operation Token Mirrors – is the result of...
Malicious code in next2ejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx a38f3ed2458e9188f19672ebadf7f1bf9aae21e644c654fb82d93cc4b55abed0 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-1554 Malicious code in ipstringfy (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx deea2822e14722106952d830748fc4b8c86f7613827ea90caaeb796f9a9eb9f4 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-1556 Malicious code in jsontobinary (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 31cd4cd413663a1b31485b3f8d93d643b462e9331b416f3aec9e6f0bde0aa8c2 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX
The supply chain attack targeting 3CX was the result of a prior supply chain compromise associated with a different company, demonstrating a new level of sophistication with North Korean threat actors. Google-owned Mandiant, which is tracking the attack event under the moniker UNC4736, said the...
Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack
On March 29, Crowdstrike published a report about a supply chain attack conducted via 3CXDesktopApp, a popular VoIP program. Since then, the security community has started analyzing the attack and sharing their findings. The following has been discovered so far: The infection is spread via...
HubSpot Data Breach – Major Cryptocurrency Companies Impacted
By Waqas HubSpot confirmed that a "bad actor" targeted its network primarily to steal data of its customers in the… This is a post from HackRead.com Read the original post: HubSpot Data Breach - Major Cryptocurrency Companies Impacted...
U.S. Indicts North Korean Hackers in Theft of $200 Million
The U.S. Justice Department today unsealed indictments against three men accused of working with the North Korean regime to carry out some of the most damaging cybercrime attacks over the past decade, including the 2014 hack of Sony Pictures, the global WannaCry ransomware contagion of 2017, and...