Malicious npm package taken down after Microsoft warning
Criminals have been caught trying to sneak a malicious package on to the popular Node.js platform npm (Node Package Manager).
Backdoor
TrickBot Adds Custom, Stealthy Backdoor to its Arsenal
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com
FBI Taps Apple to Unlock Pensacola Shooter’s iPhone
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com
Shelly : Simple Backdoor Manager With Python
Shelly adalah sebuah tool sederhana yang ditulis menggunakan Python, yang berfungsi untuk meremote sebuah website. Installation $ git clone https://github.com/tegal1337/Shelly $ cd Shelly $ python3 shell.py Also Read – Secretx : Extracting API ke…
BetterBackdoor : A Backdoor With A Multitude Of Features
BetterBackdoor is a backdoor is a tool used to gain remote access to a machine. Typically, backdoor utilities such as NetCat have 2 main functions: to pipe remote input into cmd or bash and output the response. This is useful, but it is also limited. B…
Operation Wocao – China’s Hidden Hackers Group Using Custom Hacking Tools to Attack More Than 10 High Profile Countries
Operation Wocao – New hidden Chinese threat groups are known as APT20 targeting various private, and government networks using custom hacking tools and various tactics and techniques. Threat groups likely support the Chinese government to gather …
Researchers Uncovered Malware That Drops Six Variants in One Hit
Researchers have uncovered a new malware campaign which they dub the “Hornets Nest”. What makes this attack notable is the
Researchers Uncovered Malware That Drops Six Variants in One Hit on Latest Hacking News.
Poison Frog Malware Samples Reveal OilRig’s Sloppiness
An analysis of a new backdoor called “Poison Frog” revealed that the OilRig threat group was sloppy in its development of the malware. Kaspersky Lab came across Poison Frog while scanning its archives using its YARA rule to hunt for new and…
OilRig’s Poison Frog – old samples, same trick
After we wrote our private report on the OilRig leak, we decided to scan our archives with our YARA rule, to hunt for new and older samples. Aside from finding some new samples, we believe we also succeeded in finding some of the first Poison Frog samples. Poison Frog We’re not quite sure whether the name Poison Frog is the name given to the backdoor by the malware authors, or…
StrandHogg – Hackers Aggressively Exploiting New Unpatched Android OS Vulnerability in Wide Using Malware
Newly discovered Android vulnerability dubbed “StrandHogg” being exploited in wide by unknown hackers using weaponized malware apps that posed as a legitimate one to perform various malicious activities. The vulnerability allows attackers t…