November 9, 2023 at 06:16PM Malicious Python packages masquerading as code obfuscation tools are targeting developers through the PyPI code repository. Known as “BlazeStealer,” the malware can steal data, launch keyloggers, encrypt files, and execute commands. Hackers target developers engaged in code obfuscation due to the valuable and sensitive information they work with. BlazeStealer is … Read more
November 6, 2023 at 04:28PM Google is warning about the increasing use of native cloud tools by attackers to hide their malicious activities. They highlighted a proof-of-concept exploit called “Google Calendar RAT,” which allows hackers to repurpose Google Calendar events for command-and-control purposes. Although Google has fixed this particular issue, they emphasize that every cloud … Read more
November 6, 2023 at 04:06AM Google has issued a warning about a public proof-of-concept exploit called Google Calendar RAT (GCR) that utilizes its Calendar service for command-and-control infrastructure. The exploit creates a covert channel by manipulating event descriptions in Google Calendar. Although not yet observed in the wild, the exploit has been shared on underground … Read more
November 4, 2023 at 12:30PM The North Korean hacking group, Lazarus, has been using new macOS and Windows malware in recent attacks, according to security researchers. In one attack, Lazarus targeted blockchain engineers at a cryptocurrency exchange platform by impersonating members of the blockchain community and convincing the victim to download an archive containing malicious … Read more
November 3, 2023 at 09:42AM Researchers have discovered modified versions of WhatsApp for Android that contain spyware called CanesSpy. These versions are being spread through sketchy websites and Telegram channels primarily used by Arabic and Azerbaijani speakers. The spyware is designed to activate when the phone is turned on or charging, and it sends information … Read more
October 23, 2023 at 09:25AM QNAP has successfully taken down a malicious server used in widespread brute-force attacks on NAS devices with weak passwords. With the help of Digital Ocean, they quickly identified and blocked the command-and-control server within 48 hours. QNAP urges customers to implement security measures, including changing default access port numbers and … Read more