breaking news

NPM packages found containing the TurkoRat infostealer

GlobalDefenseBot
3 minutes

Experts discovered two malicious packages in the npm package repository, both were laced with an open-source info-stealer called TurkoRat. ReversingLabs discovered two malicious packages, respectively named nodejs-encrypt-agent and nodejs-cookie-proxy-agent, in the npm package repository containing an open-source info-stealer called TurkoRat. TurkoRat is an information-stealing malware that can obtain a broad range of data from the infected machine, […]

The post NPM packages found containing the TurkoRat infostealer appeared first on Security Affairs.

breaking news

Lemon Group gang pre-infected 9 million Android devices for fraudulent activities

GlobalDefenseBot
6 minutes

The Lemon Group cybercrime ring has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. A cybercrime group tracked has Lemon Group has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. Infected devices were used for multiple malicious activities, including traffic redirections through mobile proxies, info-stealing, click fraud, and […]

The post Lemon Group gang pre-infected 9 million Android devices for fraudulent activities appeared first on Security Affairs.

Researchers Uncovered Notorious QakBot Malware C2 Infrastructure

CySecBot
1 minute

Tam Cymru researchers have recently revealed noteworthy patterns and irregularities from their continuous monitoring of QakBot’s command and control infrastructure.  The researchers shared high-level insights into the findings, shedding ligh…

FBI, GCHQ Unite To Foil Russian Malware Hacking Tool

CySecBot
1 minute

By Owais Sultan
A joint advisory from the National Cyber Security Centre has detailed how the UK and its allies have cracked Snake, a Russian malware used by the FSB.
This is a post from HackRead.com Read the original post: FBI, GCHQ Unite To Foil Russ…

breaking news

US Gov offers a $10M reward for a Russian ransomware actor

GlobalDefenseBot
4 minutes

The US government is offering a $10M reward for Russian national Mikhail Pavlovich Matveev (30) charged for his role in ransomware attacks The US Justice Department charged Russian national Mikhail Pavlovich Matveev (30), aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar, for his alleged role in multiple ransomware attacks. The DoJ unsealed two indictments charging the man […]

The post US Gov offers a $10M reward for a Russian ransomware actor appeared first on Security Affairs.

Minas – on the way to complexity

CySecBot
8 minutes

Kaspersky analysis of a complicated multi-stage attack dubbed Minas that features a number of detection evasion and persistence techniques and results in a cryptocurrency miner infection.

breaking news

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

GlobalDefenseBot
2 minutes

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The group designs and manufactures electronic equipment for its customers in […]

The post Lacroix Group shut down three facilities after a ‘targeted cyberattack’ appeared first on Security Affairs.

breaking news

China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant

GlobalDefenseBot
4 minutes

China-linked APT group Mustang Panda employed a custom firmware implant targeting TP-Link routers in targeted attacks since January 2023. Since January 2023, Check Point Research monitored a series of targeted attacks aimed at European foreign affairs entities that have been linked to the China-linked cyberespionage group Mustang Panda (aka Camaro Dragon, RedDelta or “Bronze President). MustangPanda […]

The post China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant appeared first on Security Affairs.