Threat actors are increasingly looking to trick targets into infecting themselves with malware via phony CAPTCHA checks.HP Wolf said in its quarterly Threat Insight Report that attackers are more reliant in the phony checks as a method for tricking their targets into downloading and running malware that can be used as a foothold for larger-scale … Read more
An important date is approaching: Sunday, Jan. 19, also known as Edgar Allan Poe’s birthday. I’m just kidding. That heartbeat in the floorboards? It’s TikTok’s. The Supreme Court is considering the constitutionality of a law that would ban TikTok in the U.S. If the court upholds the law, it will go into effect on Jan. 19. … Read more
Dec 19, 2024Ravie LakshmananSupply Chain / Software Security Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry. The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and retrieve second-stage payloads, respectively. “While … Read more
At Neuways, we often see how minor oversights can lead to significant cyber security breaches. Imagine this scenario: an employee researching for a client visits what appears to be a legitimate website. Unbeknownst to them, malware disguised as a Trojan virus silently downloads onto their device. From there, the Trojan infiltrates the organisation’s network, and … Read more
