malicious activities – Page 8 – Experimental News Clipping Site

The Register: Microsoft signed a dodgy driver and now ransomware scum are exploiting it

Mar 4, 2025

—

by

Source URL: https://www.theregister.com/2025/03/04/paragon_partition_manager_ransomware_driver/ Source: The Register Title: Microsoft signed a dodgy driver and now ransomware scum are exploiting it Feedly Summary: Five flaws found in Paragon Partition Manager’s kernel-level .sys Ransomware crooks are exploiting a third-party Windows kernel-level driver used and provided by disk management tool Paragon Partition Manager.… AI Summary and Description: Yes Summary:…

Hacker News: Kaspersky exposes hidden malware on GitHub stealing personal data

Mar 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.kaspersky.com/about/press-releases/kaspersky-exposes-hidden-malware-on-github-stealing-personal-data-and-485000-in-bitcoin Source: Hacker News Title: Kaspersky exposes hidden malware on GitHub stealing personal data Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the discovery of a malicious campaign dubbed GitVenom by Kaspersky’s Global Research & Analysis Team, targeting gamers and crypto investors through compromised open-source repositories on GitHub. It…

Hacker News: The GitVenom campaign: cryptocurrency theft using GitHub

Mar 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://securelist.com/gitvenom-campaign/115694/ Source: Hacker News Title: The GitVenom campaign: cryptocurrency theft using GitHub Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the GitVenom campaign, which involves threat actors creating fake open-source projects on GitHub to distribute malicious code. These projects appear legitimate and lure unsuspecting users, emphasizing the need for…

Hacker News: Certificate Transparency in Firefox: A Big Step for Web Security

Mar 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.transparency.dev/ct-in-firefox Source: Hacker News Title: Certificate Transparency in Firefox: A Big Step for Web Security Feedly Summary: Comments AI Summary and Description: Yes Summary: The implementation of Certificate Transparency (CT) enforcement in Firefox marks a significant advancement in web security, enhancing protection against certificate fraud and man-in-the-middle attacks. This change demands compliance from…

Krebs on Security: Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Feb 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/02/notorious-malware-spam-host-prospero-moves-to-kaspersky-lab/ Source: Krebs on Security Title: Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab Feedly Summary: One of the most notorious providers of abuse-friendly “bulletproof" web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned. AI Summary and…

Unit 42: JavaGhost’s Persistent Phishing Attacks From the Cloud

Feb 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/javaghost-cloud-phishing/ Source: Unit 42 Title: JavaGhost’s Persistent Phishing Attacks From the Cloud Feedly Summary: Unit 42 reports on phishing activity linked to the threat group JavaGhost. These attacks target organizations’ AWS environments. The post JavaGhost’s Persistent Phishing Attacks From the Cloud appeared first on Unit 42. AI Summary and Description: Yes Summary: The…

Hacker News: I found 1000 GitHub repos with malware. Can we get them deleted?

Feb 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://timsh.org/github-scam-investigation-thousands-of-mods-and-cracks-stealing-your-data/ Source: Hacker News Title: I found 1000 GitHub repos with malware. Can we get them deleted? Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides an alarming insight into the prevalence of malicious GitHub repositories that are used to distribute malware, specifically a variant known as Redox stealer. By…

Bulletins: Vulnerability Summary for the Week of February 17, 2025

Feb 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.cisa.gov/news-events/bulletins/sb25-055 Source: Bulletins Title: Vulnerability Summary for the Week of February 17, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info a1post–A1POST.BG Shipping for Woo Cross-Site Request Forgery (CSRF) vulnerability in a1post A1POST.BG Shipping for Woo allows Privilege Escalation. This issue affects A1POST.BG Shipping for Woo: from n/a…

Cisco Talos Blog: Weathering the storm: In the midst of a Typhoon

Feb 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.talosintelligence.com/salt-typhoon-analysis/ Source: Cisco Talos Blog Title: Weathering the storm: In the midst of a Typhoon Feedly Summary: Cisco Talos has been closely monitoring reports of widespread intrusion activity against several major U.S. telecommunications companies, by a threat actor dubbed Salt Typhoon. This blog highlights our observations on this campaign and identifies recommendations for…

The Register: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec

Feb 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/20/fbi_beware_of_ghost_ransomware/ Source: The Register Title: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec Feedly Summary: FBI and CISA issue reminder – deep sigh – about the importance of patching and backups The operators of Ghost ransomware continue to claim victims and score payments, but keeping the crooks at bay…

Tag: malicious activities