19 matches found
IT threat evolution in Q3 2025. Non-mobile statistics
IT threat evolution in Q3 2025. Mobile statistics IT threat evolution in Q3 2025. Non-mobile statistics Quarterly figures In Q3 2025: Kaspersky solutions blocked more than 389 million attacks that originated with various online resources. Web Anti-Virus responded to 52 million unique links. File...
MAL-2025-188099 Malicious code in module-data-secure-psi-double (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0588a47bb58349ff90bb5ef1641bd09c9dcc5edbce002d0762474874d097c635 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189606 Malicious code in spectron-csv-dynamo-bunyan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bbf027f428c69dd10d7d00bc4d1e879261d2ddb9873cc7a63ccbbdecde071f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187888 Malicious code in lyra-archaeoastronomy-graviton-altair (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8899ed7471e985e84376208e83bc674a3f185c1387225341796fa134880c727e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in @oppo25/teanager (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcb71f121e863eff573f53cefccff448ce09432c675c576d71b7ccce08e11fa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lutfi-brengkes56-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 338627755d4fd7192c96f0ff40a2f0ddc89442afc288ded2b2c200d14aa7e5cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-123836 Malicious code in umi-taiwan38-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27752239af322d74a42241b1212497c9563f4dbb64faec9a82628dc2a9286333 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-114351 Malicious code in gita-tomat87-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb5b887e23d441196222ab63e65d8d88a26dde558a1319649c82818c4a1ff274 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hendra-ubi51-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0be0d559205f65d5e9002f51b459b562157e619d9ec6e139c8ccb64056e1883 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-101908 Malicious code in eka-keraktelor70-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 424cd84bc9c1d0e93e38ca8f8f780f0015cbeb4e66fb3f149d988194c88eb77a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-103283 Malicious code in global_iguana_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f8873e94eddc279365be00620333af06bafba7d11b10af5786d39f49f6d1d65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-103561 Malicious code in hanafi-tahu68-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9506c3ca3b8ccb6e4fe327b4f5512447ac03c88de0558bcc749550d122dcea14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-77762 Malicious code in eka-gepuk21-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b351be6863a8dde8e8274c75dbf01b5340aed22748a9e0eda467d4fe97fef367 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in wibowo-empal48-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dac84ca535424060defd3b8401ff1c4c32944abc9ac72364638af054186c4309 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Code leaks are causing an influx of new ransomware actors
Ransomware gangs are consistently rebranding or merging with other groups, as highlighted in our 2022 Year in Review, or these actors work for multiple ransomware-as-a-service RaaS outfits at a time, and new groups are always emerging. This trend is already continuing this year. Since 2021, there...
LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities
The LodaRAT malware has resurfaced with new variants that are being deployed in conjunction with other sophisticated malware, such as RedLine Stealer and Neshta. "The ease of access to its source code makes LodaRAT an attractive tool for any threat actor who is interested in its capabilities,"...
Prynt Stealer Contains a Backdoor to Steal Victims' Data Stolen by Other Cybercriminals
Researchers discovered a private Telegram channel-based backdoor in the information stealing malware, dubbed Prynt Stealer, which its developer added with the intention of secretly stealing a copy of victims' exfiltrated data when used by other cybercriminals. "While this untrustworthy behavior i...
Ransomware Roundup: Attacking the Master Boot Record Featuring Petya
Ransomware is innovating to spread faster, hit harder and increase its payout potential. New, unknown variants pop up daily, and many leverage non-malware techniques to evade traditional defenses. Petya is a perfect example of how modern ransomware is evolving, using new techniques to attack the...
Sandworm(CVE-2 0 1 4-4 1 1 4 new variants discovered for Taiwan's APT attacks-a vulnerability warning-the black bar safety net
! Xecure lab on 1 0 On 1 7, found variant of the 0day vulnerabilities worms(CVE-2 0 1 4-4 1 1 4 have been used in the for the Government of Taiwan and various units of APT attacks, the current mainstream anti-virus software also can't effectively detected. The variant can be directly embedded...