malware

North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

by
North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

Dec 27, 2024Ravie LakshmananCryptocurrency / Cyber Espionage North Korean threat actors behind the ongoing Contagious Interview campaign have been observed dropping a new JavaScript malware called OtterCookie. Contagious Interview (aka DeceptiveDevelopment) refers to a persistent attack campaign that employs social engineering lures, with the hacking crew often posing as recruiters to trick individuals looking for … Read more

A New C++ Variant of BellaCiao Malware – Go Health Pro

by
A New C++ Variant of BellaCiao Malware – Go Health Pro

Dec 25, 2024Ravie LakshmananCyber Attack / Malware The Iranian nation-state hacking group known as Charming Kitten has been observed deploying a C++ variant of a known malware called BellaCiao. Russian cybersecurity company Kaspersky, which dubbed the new version BellaCPP, said it discovered the artifact as part of a “recent” investigation into a compromised machine in … Read more

AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case – Go Health Pro

by
AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case – Go Health Pro

Dec 23, 2024Ravie LakshmananMachine Learning / Threat Analysis Cybersecurity researchers have found that it’s possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade detection. “Although LLMs struggle to create malware from scratch, criminals can easily use them to rewrite or … Read more

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack – Go Health Pro

by
Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack – Go Health Pro

Dec 20, 2024Ravie LakshmananMalware / Supply Chain Attack The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware. Following the discovery, versions 1.1.7 of … Read more

Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware – Go Health Pro

by
Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware – Go Health Pro

Dec 17, 2024Ravie LakshmananMalware / Credential Theft A new social engineering campaign has leveraged Microsoft Teams as a way to facilitate the deployment of a known malware called DarkGate. “An attacker used social engineering via a Microsoft Teams call to impersonate a user’s client and gain remote access to their system,” Trend Micro researchers Catherine … Read more

x