Lucene search
K

16 matches found

OSV
OSV
added 2026/04/18 10:47 p.m.7 views

MAL-2026-2860 Malicious code in mylib-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8cc746751844570c4d9de0acc1fc4aba45c1316434c664fc70711749720f88f1 During import, a remote executable is automatically started. During analysis, the executable only showed a basic message. It's likely experimenting with...

6AI score
Exploits0References2
Talos Blog
Talos Blog
added 2026/01/29 11:0 a.m.9 views

Dissecting UAT-8099: New persistence mechanisms and regional focus

Cisco Talos has identified a new campaign by UAT-8099, active from late 2025 to early 2026, that is targeting vulnerable Internet Information Services IIS servers across Asia with a specific focus on victims in Thailand and Vietnam. Analysis confirms significant operational overlaps between this...

6AI score
Exploits0
Talos Blog
Talos Blog
added 2025/09/18 6:0 p.m.6 views

Put together an IR playbook — for your personal mental health and wellbeing

Welcome to this week's edition of the Threat Source newsletter. This is gonna be a tough read. I'm sorry. Believe it or not, it's even tougher for me to write. I want to talk about what it costs to be in the cybersecurity profession. Not money or time, but potentially your health, both mentally a...

6.9AI score
Exploits0
HackRead
HackRead
added 2025/02/14 4:59 p.m.7 views

Scammers Exploit JFK Files Release with Malware and Phishing

Veriti Research reported a developing cyber threat campaign centred around the declassification and release of the RFK, MLK…...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/03/08 1:27 p.m.20 views

GhostSec and Stormous Join Forces for a Ransomware Blitz

Summary: The GhostSec and Stormous ransomware factions have launched a sophisticated campaign. Introducing the GhostLocker 2.0 ransomware and the STMXGhostLocker ransomware-as-a-service RaaS initiative, these groups employ double extortion tactics, posing a significant threat to businesses...

7.1AI score
Exploits0
hivepro
hivepro
added 2023/07/05 7:48 a.m.13 views

Attacks, Vulnerabilities and Actors 26 June to 2 July 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of four attacks executed, taking advantage of three different vulnerabilities in...

7.6AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/03/30 12:24 p.m.47 views

Backdoored 3CXDesktopApp Installer Used in Active Threat Campaign

Emergent threats evolve quickly. We will update this blog with new information as it comes to light and we are able to verify it. Erick Galinkin, Ted Samuels, Zach Dayton, Eoin Miller, Caitlin Condon, Stephen Fewer, Spencer McIntyre, and Christiaan Beek all contributed to this blog. On Wednesday,...

7.6AI score0.04373EPSS
Exploits1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/27 3:33 p.m.3 views

Malicious code in selfosintstrpong (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4d7878f58080d105e60cb14b75c2666637fe39fb10e7943426e46f2b437a4cba EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/27 2:45 a.m.5 views

Malicious code in py-supercandyreplace (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6992d79c1415d37f3075f9e953c88b7e91467d09eb5cdbdea5f34e670fed2693 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/25 11:30 p.m.5 views

Malicious code in esqstringgetlgtb (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6936ebab3bab22dda3bb9b569526e9c3c337ab35a5433a2f73bd65d7226b47e3 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/25 4:48 p.m.6 views

Malicious code in libgamehacked (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 18d65d7225a4e6c29ef448d979fa633e56d238394de831ddc8b4a6208bec024a EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
Talos Blog
Talos Blog
added 2022/04/05 10:14 a.m.13 views

Threat Spotlight: AsyncRAT campaigns feature new version of 3LOSH crypter

By Edmund Brumaghin, with contributions from Alex Karkins. Ongoing malware distribution campaigns are using ISO disk images to deliver AsyncRAT, LimeRAT and other commodity malware to victims.The infections leverage process injection to evade detection by endpoint security software.These...

2.6AI score
Exploits0
hivepro
hivepro
added 2022/02/15 7:35 a.m.23 views

Threat Campaign by Molerats uses NimbleMamba Malware to target Middle East

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here An APT group Molerats associated with Gaza has launched a new threat campaign using a malware NimbleMamba aimed at Middle Eastern governments, foreign policy think tanks, and even a state-owned airline. The current attack was...

1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/04/28 12:0 a.m.17 views

Water Pamola Attacked Online Shops Via Malicious Orders

Since 2019, we have been tracking a threat campaign we dubbed as “Water Pamola.” The campaign initially compromised e-commerce online shops in Japan, Australia, and European countries via spam emails with malicious attachments...

5AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/04/09 2:19 p.m.61 views

What’s New in InsightIDR: Q1 2021 in Review

Back at the start of the year, we reflected on some of our 2020 InsightIDR product investments and took a look at what was ahead in 2021 see the blog here. As the first quarter of the year comes to a close, we wanted to offer a closer look at some of the recent updates and releases in InsightIDR,...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/02/27 5:55 p.m.47 views

Massive Spam Campaign Targets Unpatched Systems

Cybercriminals are leveraging a recently patched critical Adobe Flash Player vulnerability in a massive spam campaign targeting unpatched computers. According to cybersecurity firm Morphisec, cybercriminals are blasting spam messages that urge recipients to click a link to download a Word documen...

7.5CVSS1AI score0.89618EPSS
Exploits19References6
Rows per page
Query Builder