Cyber Attack
GlassWorm Uses Zig Dropper to Infect Developer IDEs and Open Source Repos
Security researchers have discovered a fresh evolution of the GlassWorm campaign. Aikido Security said the threat now uses a Zig-compiled...
Category: Cyber Attack
Cyber Attack
LucidRook Malware Hits Taiwanese NGOs in Targeted Spear Phishing Campaigns
A new malware campaign is targeting Taiwanese non-governmental organizations and likely some universities. Cisco Talos said it uncovered the activity...
News
Chaos Botnet Evolves to Exploit Misconfigured Cloud Hadoop with SOCKS Proxy
Security teams should take notice. Researchers at Darktrace said a new Chaos malware variant is now targeting vulnerabilities like misconfigured...
Cyber Attack
Masjesu IoT Botnet Rises as DDoS-for-Hire Threat to Routers and CDNs
Security teams have uncovered a stealthy new botnet built to launch large distributed denial-of-service attacks. Researchers say it targets Internet...
Cyber Attack
APT28 Deploys PRISMEX Malware Using Zero-Day Flaws Against Ukraine and NATO
A prolific Russia-aligned group tracked as APT28 has launched a new campaign that targets Ukraine and allied supply chains. Trend...
Cyber Attack
North Korean Hackers Push 1,700 Supply Chain Malware Packages Across npm, PyPI, Go, Rust
Security firms have uncovered a large, coordinated campaign that slipped malicious code into open-source package registries. The activity is linked...
Cyber Attack
Iran-Linked Hackers Target Internet-Facing PLCs, Disrupt U.S. Critical Systems
U.S. agencies warned that Iran-affiliated cyber actors are targeting internet-exposed operational technology devices across critical infrastructure. The FBI said, “These...
Cyber Attack
Mass DNS Hijacking by APT28 Targets SOHO Routers and Steals Tokens
A Russia-linked group known as APT28 has run a wide DNS hijacking and espionage campaign that abused insecure home and...
Cyber Attack
Over 1,000 Exposed ComfyUI Instances Hijacked for Cryptomining and Proxy Botnet
Security researchers at Censys have uncovered an active campaign that targets internet‑exposed ComfyUI instances to build a cryptomining and proxy...
Cyber Attack
Iran-Linked Password Spraying Hits 300+ Israeli Microsoft 365 Tenants
An Iran-linked threat actor carried out a large password-spraying campaign against Microsoft 365 environments in Israel and the United Arab...