Multiple Python packages referencing dependencies containing cryptocurrency-stealing code were published to PyPI.
The post Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI appeared first on SecurityWeek.
US Transportation and Logistics Firms Targeted With Infostealers, Backdoors
A malicious campaign is targeting transportation and logistics organizations in North America with various malware families.
The post US Transportation and Logistics Firms Targeted With Infostealers, Backdoors appeared first on SecurityWeek.
AI-Generated Malware Found in the Wild
HP has intercepted an email campaign comprising a standard malware payload delivered by an AI-generated dropper.
The post AI-Generated Malware Found in the Wild appeared first on SecurityWeek.
Necro Trojan Infects Google Play Apps With Millions of Downloads
The Necro trojan was found in two Android applications in Google Play with a combined downloads count of over 11 million.
The post Necro Trojan Infects Google Play Apps With Millions of Downloads appeared first on SecurityWeek.
In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted
Noteworthy stories that might have slipped under the radar: Disney will stop using Slack following a hack, Binance warns of malware, and US-Taiwan defense conference targeted by hackers.
The post In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted appeared first on SecurityWeek.
Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China
GreyNoise has observed millions of spoofed IPs flooding internet providers with web traffic primarily focusing on TCP connections.
The post Noise Storms: Massive Amounts of Spoofed Web Traffic Linked to China appeared first on SecurityWeek.
CISA: Oracle Vulnerabilities From ‘Miracle Exploit’ Targeted in Attacks
CISA is warning organizations that two Oracle vulnerabilities tracked as CVE-2022-21445 and CVE-2020-14644 are being exploited in the wild.
The post CISA: Oracle Vulnerabilities From ‘Miracle Exploit’ Targeted in Attacks appeared first on SecurityWeek.
Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military
Black Lotus Labs estimates that more than 200,000 routers, network-attached storage servers, and IP cameras have been ensnared in the botnet.
The post Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military appeared first on SecurityWeek.
Threat Actors Target Accounting Software Used by Construction Contractors
Malicious hackers are caught brute-forcing Foundation Accounting Software at scale, compromising organizations in the construction industry.
The post Threat Actors Target Accounting Software Used by Construction Contractors appeared first on SecurityWeek.
New ‘Hadooken’ Linux Malware Targets WebLogic Servers
The recently observed Hadooken malware targeting Oracle WebLogic applications is linked to multiple ransomware families.
The post New ‘Hadooken’ Linux Malware Targets WebLogic Servers appeared first on SecurityWeek.