#NetworkDefenses

PyPi package backdoors Macs using the Sliver pen-testing suite

by

May 13, 2024 at 05:58PM A new malicious Python package, ‘requests-darwin-lite’, mimicked the ‘requests’ library on PyPI to target macOS devices, deploying the Sliver C2 adversary framework with steganography in a PNG file. The campaign’s discovered steps involved executing the Sliver payload on targets. Despite its removal, the incident highlights Sliver’s increased use in breaching … Read more

US government tells hospitals: Meet security standards or no federal dollars for you

by

January 10, 2024 at 03:37PM The White House is expected to propose rules requiring US hospitals to meet cybersecurity standards before receiving federal funding. This move aims to combat ransomware attacks on healthcare facilities. The rules, set to take effect this year, will link hospital IT security with funding. Stakeholders’ feedback will be valued, with … Read more