15 matches found
EUVD-2025-143353
Malicious code in anidata-hd-mata npm...
EUVD-2025-144631
Malicious code in augis-lepaod-mata npm...
Malicious code in mata-rasaaya-nurses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2492173af06bdab2d67a052c97a57e3f68fadc5802e3b5ca8503d88fb9bd8dee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-160213 Malicious code in mata-rasaaya-nurses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2492173af06bdab2d67a052c97a57e3f68fadc5802e3b5ca8503d88fb9bd8dee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
mata-mua.com Improper Access Control vulnerability OBB-3804882
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
MATA Backdoor Targets Eastern European Industrial Companies
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary MATA malware, a sophisticated backdoor framework, updated to target Eastern European industrial companies via spear-phishing, compromising financial software servers, and infiltrating networks, even...
Sophisticated MATA Framework Strikes Eastern European Oil and Gas Companies
An updated version of a sophisticated backdoor framework called MATA has been used in attacks aimed at over a dozen Eastern European companies in the oil and gas sector and defense industry as part of a cyber espionage operation that took place between August 2022 and May 2023. "The actors behind...
The Hermit Kingdom’s Ransomware Play
The Hermit Kingdom’s Ransomware play By Trellix · May 3, 2022 With a special thanks to @ValidHorizon who helped and shared information In February 2016, news broke about what is now known as the ‘Bangladesh Bank Heist’. Hackers attempted to transfer nearly one billion USD through the SWIFT system...
Latest Report Uncovers Supply Chain Attacks by North Korean Hackers
Lazarus Group, the advanced persistent threat APT group attributed to the North Korean government, has been observed waging two separate supply chain attack campaigns as a means to gain a foothold into corporate networks and target a wide range of downstream entities. The latest...
Lazarus Attackers Turn to the IT Supply Chain
Lazarus – a North Korean advanced persistent threat APT group – is working on launching cyberespionage-focused attacks on supply chains with its multi-platform MATA framework. The MATA malware framework can target three operating systems: Windows, Linux and macOS. MATA has historically been used ...
IT threat evolution Q3 2020
Targeted attacks MATA: Lazaruss multi-platform targeted malware framework The more sophisticated threat actors are continually developing their TTPs Tactics, Techniques and Procedures and the toolsets they use to compromise the systems of their targets. However, malicious toolsets used to target...
North Korean Hackers Spotted Using New Multi-Platform Malware Framework
Lazarus Group, the notorious hacking group with ties to the North Korean regime, has unleashed a new multi-platform malware framework with an aim to infiltrate corporate entities around the world, steal customer databases, and distribute ransomware. Capable of targeting Windows, Linux, and macOS...
Lazarus Group Surfaces with Advanced Malware Framework
The North Korea-linked APT known as Lazarus Group has debuted an advanced, multipurpose malware framework, called MATA, to target Windows, Linux and macOS operating systems. Kaspersky researchers uncovered a series of attacks utilizing MATA so-called because the malware authors themselves call...
MATA: Multi-platform targeted malware framework
As the IT and OT environment becomes more complex, adversaries are quick to adapt their attack strategy. For example, as users work environments diversify, adversaries are busy acquiring the TTPs to infiltrate systems. Recently, we reported to our Threat Intelligence Portal customers a similar...
Mata message board backend has a universal password login vulnerability
Marta Message Board is a no-refresh message board program. A universal password login vulnerability exists in the background of Marta Message Board, which can be exploited by an attacker to log in directly to the background...