Tag: cryptocurrency theft
-
Slashdot: Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike’s
Source URL: https://it.slashdot.org/story/25/09/20/0542237/self-replicating-worm-affected-several-hundred-npm-packages-including-crowdstrikes Source: Slashdot Title: Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike’s Feedly Summary: AI Summary and Description: Yes Summary: The Shai-Hulud malware campaign has affected numerous npm packages, including those maintained by CrowdStrike, via the injection of malicious scripts designed to steal developer credentials and exfiltrate sensitive information. The campaign highlights…
-
Slashdot: $1M Stolen in ‘Industrial-Scale Crypto Theft’ Using AI-Generated Code
Source URL: https://yro.slashdot.org/story/25/08/11/0037258/1m-stolen-in-industrial-scale-crypto-theft-using-ai-generated-code?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: $1M Stolen in ‘Industrial-Scale Crypto Theft’ Using AI-Generated Code Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a sophisticated cybercrime operation, GreedyBear, which utilizes a highly coordinated strategy, weaponizing browser extensions and phishing sites to facilitate industrial-scale crypto theft. The group’s innovative techniques, including the modification…
-
The Register: Ripple NPM supply chain attack hunts for private keys
Source URL: https://www.theregister.com/2025/04/23/ripple_npm_supply_chain/ Source: The Register Title: Ripple NPM supply chain attack hunts for private keys Feedly Summary: A mystery thief and a critical CVE involved in crypto cash grab Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency.… AI Summary and Description: Yes Summary: The…
-
Microsoft Security Blog: StilachiRAT analysis: From system reconnaissance to cryptocurrency theft
Source URL: https://www.microsoft.com/en-us/security/blog/2025/03/17/stilachirat-analysis-from-system-reconnaissance-to-cryptocurrency-theft/ Source: Microsoft Security Blog Title: StilachiRAT analysis: From system reconnaissance to cryptocurrency theft Feedly Summary: Microsoft Incident Response uncovered a novel remote access trojan (RAT) named StilachiRAT, which demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. This blog primarily focuses on analysis of the WWStartupCtrl64.dll…
-
Hacker News: The GitVenom campaign: cryptocurrency theft using GitHub
Source URL: https://securelist.com/gitvenom-campaign/115694/ Source: Hacker News Title: The GitVenom campaign: cryptocurrency theft using GitHub Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the GitVenom campaign, which involves threat actors creating fake open-source projects on GitHub to distribute malicious code. These projects appear legitimate and lure unsuspecting users, emphasizing the need for…
-
The Register: Rather than add a backdoor, Apple decides to kill iCloud E2EE for UK peeps
Source URL: https://www.theregister.com/2025/02/24/rather_than_add_a_backdoor/ Source: The Register Title: Rather than add a backdoor, Apple decides to kill iCloud E2EE for UK peeps Feedly Summary: PLUS: SEC launches new crypto crime unit; Phishing toolkit upgraded; and more Infosec in brief Apple has responded to the UK government’s demand for access to its customers’ data stored in iCloud…