Fake Skype, Zoom, Google Meet Sites Infecting Devices with Multiple RATs

By Deeba Ahmed Remote Access Trojan Threat: Beware Malicious Downloads Disguised as Meeting Apps. This is a post from HackRead.com Read the original post: Fake Skype, Zoom, Google Meet Sites Infecting Devices with Multiple RATs...

MAL-2023-1890 Malicious code in ktcalendar (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3dae7c8d1185e6518c9e9358deb5aaa5806eb6b2b206a8b05731baa4a45a5b9c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1995 Malicious code in prompt-tolkit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 675eb0f2bc82cc672a20e6da1b01697163dfbfbc9b6fb7267b2b465f16529cb9 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2149 Malicious code in reqeusts-toolbelt (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9cb8118656566af70b2c9982237322b7240df36e09540a2c8004d4f36a0b594d Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2257 Malicious code in simplejsno (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 87bea338e2fd38835634fd7646c5951fa1b84e405e875c244a97e2835cba6ebb Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2219 Malicious code in scikit-llearn (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6bf58245abb9da01b60c982ce640745844d2f52bf58abf309420ce018f35bc5e Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2461 Malicious code in yfnance (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 174c68615790da014be30fdff340b46f2b564d041b5c7853075496d20b614284 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1650 Malicious code in bictoinlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx c0c3551acf46d4682ba01329071cc229e45c3f3a6ced5f2e2bbb751fccbfab96 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1710 Malicious code in cryptcompare (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx f891bb3c0b048e78c1fba3aaff1f7537eaeea1fb1987e3a3ce9d67042f4b05c9 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1750 Malicious code in cryyptocompare (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 79a521216bcaad1d0f52cfdfc7ef82841b97d7d6a04a6b61e7eace10bed5b77f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Indian APT exposes its Modus Operandi by infecting their own devices

By Waqas The IT security researchers at Malwarebytes have published a report revealing details of an ironic incident involving Patchwork… This is a post from HackRead.com Read the original post: Indian APT exposes its Modus Operandi by infecting their own devices...

Beware of 'Coronavirus Maps' – It's a malware infecting PCs to steal passwords

Cybercriminals will stop at nothing to exploit every chance to prey on internet users. Even the disastrous spread of SARS-COV-II the virus, which causes COVID-19 the disease, is becoming an opportunity for them to likewise spread malware or launch cyber attacks. Reason Labs recently released a...

Threat Roundup for October 11 to October 18

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 11 and Oct. 18. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...

Distributing Malware By Becoming an Admin on an Open-Source Project

The module "event-stream" was infected with malware by an anonymous someone who became an admin on the project. Cory Doctorow points out that this is a clever new attack vector: Many open source projects attain a level of "maturity" where no one really needs any new features and there aren't a lo...

VPNFilter malware caught infecting Asus, D-Link, Huawei, ZTE & others

By Waqas VPNFilter malware is back and it seems like rebooting your This is a post from HackRead.com Read the original post: VPNFilter malware caught infecting Asus, D-Link, Huawei, ZTE & others...

CVE-2017-16127

The module pandora-doomsday infects other modules. It's since been unpublished from the registry...

New macOS malware aims at infecting devices with malicious macros

By Waqas The general perception about Apple devices is that they are This is a post from HackRead.com Read the original post: New macOS malware aims at infecting devices with malicious macros...

Data Center Security Testing Tool: Infection Monkey

The Infection Monkey is an open source security tool for testing a data center’s resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Command and ControlC&C server. The Infection...

China arrests 11 hackers for infecting 250M devices with Fireball malware

By Waqas Law enforcement authorities in China have arrested eleven hackers suspected This is a post from HackRead.com Read the original post: China arrests 11 hackers for infecting 250M devices with Fireball malware...

Hak5 WiFi Pineapple Preconfiguration Command Injection 2

This Metasploit module exploits a command injection vulnerability on WiFi Pineapples versions 2.0 and below and pineapple versions prior to 2.4. We use a combination of default credentials with a weakness in the anti-csrf generation to achieve command injection on fresh pineapple devices prior to...