Experimental News Clipping Site

Tag: trojan

  • Slashdot: Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike’s

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/09/20/0542237/self-replicating-worm-affected-several-hundred-npm-packages-including-crowdstrikes Source: Slashdot Title: Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike’s Feedly Summary: AI Summary and Description: Yes Summary: The Shai-Hulud malware campaign has affected numerous npm packages, including those maintained by CrowdStrike, via the injection of malicious scripts designed to steal developer credentials and exfiltrate sensitive information. The campaign highlights…

  • The Register: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/07/24/coyote_malware_microsoft_uia/ Source: The Register Title: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds Feedly Summary: Some coyotes hunt squirrels, this one hunts users’ financial apps A new variant of the Coyote banking trojan abuses Microsoft’s UI Automation (UIA), making it the first reported malware to use UIA for credential theft.… AI…

  • Unit 42: Fix the Click: Preventing the ClickFix Attack Vector

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/preventing-clickfix-attack-vector/ Source: Unit 42 Title: Fix the Click: Preventing the ClickFix Attack Vector Feedly Summary: ClickFix campaigns are on the rise. We highlight three that distributed NetSupport RAT, Latrodectus, and Lumma Stealer malware. The post Fix the Click: Preventing the ClickFix Attack Vector appeared first on Unit 42. AI Summary and Description: Yes…

  • The Register: Minecraft cheaters never win … but they may get malware

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/06/18/minecraft_mod_malware/ Source: The Register Title: Minecraft cheaters never win … but they may get malware Feedly Summary: Infostealers posing as popular cheat tools are cropping up on GitHub Trojanized Minecraft cheat tools hosted on GitHub have secretly installed stealers that siphon credentials, crypto wallets, and other sensitive data when executed by players.… AI…

  • Cisco Talos Blog: Famous Chollima deploying Python version of GolangGhost RAT

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/python-version-of-golangghost-rat/ Source: Cisco Talos Blog Title: Famous Chollima deploying Python version of GolangGhost RAT Feedly Summary: Learn how the North Korean-aligned Famous Chollima is using the a new Python-based RAT, “PylangGhost," to target cryptocurrency and blockchain jobseekers in a campaign affecting users primarily in India. AI Summary and Description: Yes **Summary:** The analysis…

  • Krebs on Security: Oops: DanaBot Malware Devs Infected Their Own PCs

    by

    Kurt Seifried
    in

    Source URL: https://krebsonsecurity.com/2025/05/oops-danabot-malware-devs-infected-their-own-pcs/ Source: Krebs on Security Title: Oops: DanaBot Malware Devs Infected Their Own PCs Feedly Summary: The U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. The FBI says a newer…

  • Microsoft Security Blog: Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/05/21/lumma-stealer-breaking-down-the-delivery-techniques-and-capabilities-of-a-prolific-infostealer/ Source: Microsoft Security Blog Title: Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer Feedly Summary: Over the past year, Microsoft Threat Intelligence observed the persistent growth and operational sophistication of Lumma Stealer, an info-stealing malware used by multiple financially motivated threat actors to target various industries. Microsoft,…

  • Cisco Talos Blog: The IT help desk kindly requests you read this newsletter

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/the-it-help-desk-kindly-requests-you-read-this-newsletter/ Source: Cisco Talos Blog Title: The IT help desk kindly requests you read this newsletter Feedly Summary: How do attackers exploit authority bias to manipulate victims? Martin shares proactive strategies to protect yourself and others in this must-read edition of the Threat Source newsletter. AI Summary and Description: Yes **Summary:** The text…

  • Cisco Talos Blog: Unmasking the new XorDDoS controller and infrastructure

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/unmasking-the-new-xorddos-controller-and-infrastructure/ Source: Cisco Talos Blog Title: Unmasking the new XorDDoS controller and infrastructure Feedly Summary: Cisco Talos observed the ongoing global spread of the XorDDoS malware, predominantly targeting the United States, with evidence suggesting Chinese-speaking operators are using sophisticated tools to orchestrate widespread attacks. AI Summary and Description: Yes **Summary:** The text discusses…