Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2025/04/03 12:22 p.m.26 views

Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware

The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented Go-based backdoor called GolangGhost on Windows and macOS systems. The new...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/04 10:33 a.m.21 views

Malicious npm Packages Found Exfiltrating Sensitive Data from Developers

Cybersecurity researchers have discovered a new bunch of malicious packages on the npm package registry that are designed to exfiltrate sensitive developer information. Software supply chain firm Phylum, which first identified the "test" packages on July 31, 2023, said they "demonstrated increasi...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/07 11:39 a.m.44 views

Transparent Tribe Hackers Distribute CapraRAT via Trojanized Messaging Apps

A suspected Pakistan-aligned advanced persistent threat APT group known as Transparent Tribe has been linked to an ongoing cyber espionage campaign targeting Indian and Pakistani Android users with a backdoor called CapraRAT. "Transparent Tribe distributed the Android CapraRAT backdoor via...

2.2AI score
Exploits0
ThreatPost
ThreatPost
added 2021/11/08 4:38 p.m.143 views

Zoho’s ManagedEnginePassword Manager Flaw Torched by Godzilla Webshell, New Data Stealer

A new campaign is prying apart a known security vulnerability in the Zoho ManageEngine ADSelfService Plus password manager, researchers warned over the weekend. The threat actors have managed to exploit the Zoho weakness in at least nine global entities across critical sectors so far technology,...

10CVSS10AI score0.9896EPSS
Exploits10References23
The Hacker News
The Hacker News
added 2021/07/28 10:6 a.m.61 views

Hackers Posed as Aerobics Instructors for Years to Target Aerospace Employees

An Iranian cyberespionage group masqueraded as an aerobics instructor on Facebook in an attempt to infect the machine of an employee of an aerospace defense contractor with malware as part of a years-long social engineering and targeted malware campaign. Enterprise security firm Proofpoint...

1.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2021/01/27 12:31 a.m.48 views

North Korea Targets—and Dupes—a Slew of Cybersecurity Pros

The sweeping campaign took advantage of the collaborative spirit among researchers, with an unknown number of victims...

3.7AI score
Exploits0
Rows per page
Query Builder