Malicious code in www-latam-commons (npm)

The package www-latam-commons was found to contain malicious code...

Malicious code in latam-xp-analytics-plugin-gtm (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 333a48f2dfbcb9ab75608fb120182771732f71543d3bc13c3352b144b3022403 The OpenSSF Package Analysis project identified 'latam-xp-analytics-plugin-gtm' @ 2.0.0 npm as malicious. It is considered malicious because: -...

Malicious code in nubank-www-latam-commons (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f6ef98f115341b4b410449098489bee4471969a706dfe619a9d7704d26fa5a1f The OpenSSF Package Analysis project identified...

Malicious code in latam-xp-analytics-plugin-absmartly (npm)

The package communicates with a domain associated with malicious activity...

CVE-2021-37386

Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...

China-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber Intrusions

Cybersecurity researchers have shed light on a new China-linked threat actor called Earth Alux that has targeted various key sectors such as government, technology, logistics, manufacturing, telecommunications, IT services, and retail in the Asia-Pacific APAC and Latin American LATAM regions. "Th...

Malicious code in latam-xp-analytics-plugin-bloomreach (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 46687ff096af514b5081dc4a34a83f209ca1ad61f07606c88537ffc54f3054ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Fake Hot Fix for CrowdStrike ”crowdstrike-hotfix.zip” Spreads Remcos RAT

Beware "crowdstrike-hotfix.zip"! This fake file spreads Remcos malware, targeting LatAm CrowdStrike users. Dont download it! Learn how to…...

Astaroth, Mekotio & Ousaban abusing Google Cloud Run in LATAM-focused malware campaigns

Google Cloud Run is currently being abused in high-volume malware distribution campaigns, spreading several banking trojans such as Astaroth aka Guildma, Mekotio and Ousaban to targets across Latin America and Europe. The volume of emails associated with these campaigns has significantly increase...

@etalab/cadastre (>=0.14.0 <=0.21.0), @fmidev/smartmet-alert-client (>=3.0.0 <=3.8.8) +13 more potentially affected by CVE-2024-1163 via mapshaper (>=0.3.43 <=0.6.42)

mapshaper NPM version =0.3.43, =0.14.0, =3.0.0, =0.0.1, =0.1.9, =0.0.1, =0.0.3, =2.1.0, =1.3.1, =0.0.1, =0.0.1, =0.1.0, =0.1.1 Source cves: CVE-2024-1163 Source advisory: OSV:GHSA-8M36-62RW-9MXW...

New Mispadu Banking Trojan Exploiting Windows SmartScreen Flaw

The threat actors behind the Mispadu banking Trojan have become the latest to exploit a now-patched Windows SmartScreen security bypass flaw to compromise users in Mexico. The attacks entail a new variant of the malware that was first observed in 2019, Palo Alto Networks Unit 42 said in a report...

New Financial Malware 'JanelaRAT' Targets Latin American Users

Users in Latin America LATAM are the target of a financial malware called JanelaRAT that's capable of capturing sensitive information from compromised Microsoft Windows systems. "JanelaRAT mainly targets financial and cryptocurrency data from LATAM bank and financial institutions," Zscaler...

Attacks, Vulnerabilities and Actors 10 July to 16 July 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of six attacks executed, total six zero-day vulnerabilities out of which Five...

CVE-2021-37386

Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...

CVE-2021-37386

Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...

Design/Logic Flaw

Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...

CVE-2021-37386

Affected products: Furukawa Electric LatAm 423-41W/AC (pre-1.1.4) and LD421-21W (pre-1.3.3). Issue: HTML injection via the serial number update function (CVE-2021-37386). Root cause / vector: HTML injection vulnerability in the serial number update feature. Impact (as stated): Confidentiality, in...

PT-2023-12318 · Furukawa Electric · Furukawa Electric Latam Ld421-21W +1

Name of the Vulnerable Software and Affected Versions: Furukawa Electric LatAm 423-41W/AC versions prior to 1.1.4 Furukawa Electric LatAm LD421-21W versions prior to 1.3.3 Description: The issue is related to an HTML injection vulnerability via the serial number update function. This vulnerabilit...

CVE-2021-37386

Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...

The Unrelenting Nature of TOITOIN Malware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The TOITOIN malware campaign, targeting businesses in the LATAM region, employs sophisticated techniques and multi-stage infection chains with numerous malware samples disguised as compressed ZIP archive...