Shai-Hulud: Ongoing Package Supply Chain Worm Delivering Data-Stealing Malware

Detect and mitigate a critical supply chain compromise affecting over 100+ packages, organizations should act urgently...

Banana Squad Hides Data-Stealing Malware in Fake GitHub Repositories

Banana Squad hid data-stealing malware in fake GitHub repos posing as Python tools, tricking users and targeting sensitive info like browser and wallet data...

Indian Software Firm's Products Hacked to Spread Data-Stealing Malware

Installers for three different software products developed by an Indian company named Conceptworld have been trojanized to distribute information-stealing malware. The installers correspond to Notezilla, RecentX, and Copywhiz, according to cybersecurity firm Rapid7, which discovered the supply...

‘Operation Endgame’ Hits Malware Delivery Platforms

Law enforcement agencies in the United States and Europe today announced Operation Endgame, a coordinated action against some of the most popular cybercrime platforms for delivering ransomware and data-stealing malware. Dubbed "the largest ever operation against botnets," the international effort...

Malicious code in tpvirtualcontrolmc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx eb3fb0a06e135b558d06e2e22a439bb47a1cd46b20b3509e4de9dfff2b11827d EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in libedkillcraft (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx aff9a00960fe3a3340208d1de78759e4f0fa8afe90bf9aee29c098265404a46c EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in tpstringverstudy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 68c71b422026b252636ef9745ed68bd1e627d30a44f0715b7463b320c10f6aba EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in py-edpipcc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 46ccd9ebed800b93950662defe72938a8ac07b00e95e294c4bd0b21241a863f4 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in esqvmnvidiacc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b3d3c925c3c03d80a901ba9e0fbc6c671fb90d042c4f74a1ab6a84d59ef75c14 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in selfpongpytool (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 5a9156162fe917add6f5a5b8b928649b60ee5e60d495b19e95545e529d83ac67 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in esqtoolrand (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0adaf0798075b8b130a22d4456ab5109a896cd1ee3ee5f80e4bba0678247a6b1 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in libpipcraftload (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 2c2b4f4dbd14643ca5d67a02f1666816a90ea94280dffe1175e5c88202f48134 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in killcc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 980b00f48038f1fcf1870fa36789dfef126e3aff706974075999280a2a36d06f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in masksuper (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 7acb6aa9fe8a3ac9706fca33f3a902faa07270734488064b4a8ab7dda881f239 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Malicious code in getram (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8d5d21848d2608aba15edc113b4904518635403486dae3054ff0fc83838517aa EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

FormBook Malware Targets U.S. Defense Contractors, Aerospace and Manufacturing Sectors

Attackers spreading new malware called FormBook are singling out aerospace firms, defense contractors and some manufacturing organizations in the United States and South Korea. According to researchers at FireEye, FormBook was spotted in several high-volume distribution campaigns targeting the U....

IDN Homograph Attack Spreading Betabot Backdoor

An IDN homograph attack leveraging Adobe’s brand has been discovered, with the malicious site spreading the Betabot backdoor and ultimately infecting compromised machines with cryptocurrency-mining and data-stealing malware. Attacks using internationalized domain name homographs rely on users...

CoreBot Credential-Stealing Malware

A new piece of data-stealing malware has a real thirst for credentials—and the potential for worse trouble down the line. IBM today published a report on CoreBot, generic information-stealing malware designed with enough flexibility to soon ramp up its capabilities to exfiltrate data in real time...

Microsoft: Emergency IE Patch Coming

Microsoft has started dropping broad hints that an emergency patch for Internet Explorer will be released very soon to counter targeted attacks and the publication of exploit code for a “browse and you’re owned” vulnerability in its flagship Web browser. UPDATE: Here is the official confirmation...