Earth Lusca's New SprySOCKS Linux Backdoor Targets Government Entities

The China-linked threat actor known as Earth Lusca has been observed targeting government entities using a never-before-seen Linux backdoor called SprySOCKS. Earth Lusca was first documented by Trend Micro in January 2022, detailing the adversary's attacks against public and private sector entiti...

MAL-2023-1323 Malicious code in trochilus (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c6895d1063758093bf21294cd9edbba16c2e957fd931d17008cc6d962c8992b4 The OpenSSF Package Analysis project identified 'trochilus' @ 50.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in trochilus (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c6895d1063758093bf21294cd9edbba16c2e957fd931d17008cc6d962c8992b4 The OpenSSF Package Analysis project identified 'trochilus' @ 50.0.0 npm as malicious. It is considered malicious because: - The package...

New RAT Trochilus Skilled at Espionage, Evading Detection

Researchers have uncovered a new remote access Trojan RAT that can evade sandbox analysis, is adept at carrying out espionage, and is being used in targeted threat operations. Named Trochilus, the malware is part of a multi-pronged malware operation that researchers at Arbor Networks are calling...