New string of phishing attacks targets Python developers

If you recently got an email asking you to verify your credentials to a PyPI site, better change that password ...

North Korea's Lazarus Group shares its malware with IT work scammers

North Korean-linked crews connected to the pervasive IT worker scams have upped their malware game, using more advanced tools ...
GovInfoSecurity

Stop Malware at Build Time, Not Runtime

Dustin Kirkland of Chainguard explains how verified, hardened components and AI-powered automation can prevent malware ...

North Korean Hackers Deploy New “AkdoorTea” Backdoor

North Korean hackers are intensifying their global campaign against cryptocurrency and Web3 developers, using a new backdoor ...
WeLiveSecurity

DeceptiveDevelopment: From primitive crypto theft to sophisticated AI-based deception

ESET researchers reveal how malware operators collaborate with covert North Korean IT workers, posing a threat to both headhunters and job seekers.
The Hacker News

North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers

North Korea’s Contagious Interview spreads AkdoorTea and TsunamiKit to steal crypto and infiltrate global developers.

Hackers are using GPT-4 to build a virtual assistant - here's what we know

In essence, MalTerminal is a malware generator. When adversaries bring it up, it asks if they want to create a ransomware ...
The Hacker News

Researchers Expose SVG and PureRAT Phishing Threats Targeting Ukraine and Vietnam

According to Fortinet, Amatera Stealer and PureMiner are both deployed as fileless threats, with the malware "executed via ...
SecurityWeek

PyPI Warns Users of Fresh Phishing Campaign

PyPI, the default platform for Python's package management tools, is warning users of a fresh phishing campaign.
SecurityWeek

ShadowV2 DDoS Service Lets Customers Self-Manage Attacks

New DDoS botnet ShadowV2 targets misconfigured Docker containers and offers a service model where customers launch their own ...
Infosecurity Magazine

ShadowV2 Botnet Exposes Rise of DDoS-as-a-service Platforms

The ShadowV2 DDoS operation, discovered by Darktrace, uses a command-and-control framework hosted on GitHub CodeSpaces, a ...
CSO Online

Evolved PXA Stealer wraps PureRAT in multi-layer obfuscation

The stealer campaign has evolved into a multi-stage delivery chain that ultimately deploys the modular, feature-rich PureRAT.