The CoffeeLoader Utilizes GPU-Powered Arsenal Packer to Bypass EDR and Antivirus Detection
Security experts have highlighted a new advanced malicious software referred to as CoffeeLoader that has been created to retrieve and...
researchers
Exploitation of Nine-Year-Old npm Components for Extracting API Keys Using Camouflaged Codes
A group of cybersecurity analysts identified a number of virtual currency components in the npm catalog that have been taken...
Latest Transforming Ferret Scam System Mirrors 114 Labels with Victims’ Email Domain System Records
Security analysts have revealed a recent phishing scheme known as PhaaS which exploits the DNS mail exchange (MX) records to...
PJobRAT reemerges, attempts once more at chat applications
Reported by researchers in the year 2021, PJobRAT – an Android RAT initially identified in 2019 – has been focusing...
Deceitful npm Package Alters Local ‘ethers’ Library to Initiate Backdoor Infiltrations
Security experts have identified two malevolent bundles on the npm archive that have been crafted to corrupt another package installed...
Unauthorized Users Exploit .NET MAUI to Focus on Consumers from India and China with False Financial, Social Applications
Security specialists are highlighting an Android malicious software initiative that exploits Microsoft's .NET Multi-platform App UI (.NET MAUI) ecosystem to...
Two Extensions with Early-Stage Ransomware Removed from VSCode Marketplace
Researchers specializing in cybersecurity have detected two harmful extensions within the Visual Studio Code (VSCode) Marketplace which aim to distribute...
Major mySCADA myPRO Vulnerabilities May Enable Attackers to Hijack Industrial Control Systems
A pair of significant weaknesses affecting mySCADA myPRO, a Supervisory Control and Data Acquisition (SCADA) solution employed in operational technology...
A Fresh Infiltration Technique Identified as ‘Rules File Backdoor’ Assault Gives Intruders Ability to Infuse Corrupt Code through AI Code Editors
Innovative security analysts have revealed insights about a recent method of supply chain attack known as Rules File Backdoor that...
Security Breach in GitHub Action Exposes CI/CD Credentials in More Than 23,000 Repositories
Security experts have highlighted an event where the widely used GitHub Action tj-actions/changed-files was infiltrated leading to the exposure of...
Deceptive PyPI Bundles Absconded Cloud Tokens—Exceeding 14,100 Installations Before Elimination
A group of cybersecurity analysts has alerted about a malevolent operation aimed at consumers of the Python Package Index (PyPI)...
Scientists Uncover Fresh Polymorphic Onslaught That Replicates Browser Plugins to Swipe Credentials
A group of security experts have showcased a unique method that enables a dangerous web browser add-on to mimic any...
An evil PyPI Package has stolen Ethereum Private Keys through Polygon RPC Transactions
Research experts in online security have found a harmful Python bundle within the Python Package Index (PyPI) archive that is...
Seven Malevolent Go Bundles Located Distributing Malware on Linux and macOS Platforms
Experts in cybersecurity have discovered an active harmful operation aimed at the Go environment using counterfeit modules that are intended...
Online Intruders Employ ClickFix Manipulation for Installing Malicious PowerShell-Controlled Chaos C2 through SharePoint Websites
Security professionals are alerting the public to a fresh phishing operation that utilizes the ClickFix method to distribute a free...
