#JPCERT

JPCERT shares Windows Event Log tips to detect ransomware attacks

by

September 30, 2024 at 03:23PM JPCERT/CC has shared tips to detect different ransomware gang attacks based on Windows Event Logs, allowing timely detection of ongoing attacks before spreading too far into a network. Based on the meeting notes, the key takeaways are: 1. Japan’s Computer Emergency Response Center (JPCERT/CC) has provided tips on detecting various … Read more

Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems

by

February 29, 2024 at 03:33AM North Korean hackers, Lazarus, uploaded four malware-containing packages to PyPI repository, collectively downloaded 3,269 times. The packages, now removed, targeted Python developers by capitalizing on typos during installation. The attack mirrors Phylum’s discovery of rogue npm packages targeting developers. Both campaigns conceal malicious code within test scripts. JPCERT/CC urges caution … Read more