Security
Headlines
HeadlinesLatestCVEs

Tag

#backdoor

Zoom Phishing Scam Steals Microsoft Exchange Credentials

By Deeba Ahmed The phishing email, which was marked as safe by Microsoft, was aimed at 21,000 users of a national healthcare firm. This is a post from HackRead.com Read the original post: Zoom Phishing Scam Steals Microsoft Exchange Credentials

HackRead
Open in Source
#microsoft#git#backdoor#botnet#oauth#auth
Researchers Detail Malicious Tools Used by Cyberespionage Group Earth Aughisky

A new piece of research has detailed the increasingly sophisticated nature of the malware toolset employed by an advanced persistent threat (APT) group named Earth Aughisky. "Over the last decade, the group has continued to make adjustments in the tools and malware deployments on specific targets located in Taiwan and, more recently, Japan," Trend Micro disclosed in a technical profile last week

Binance Hackers Minted $569M in Crypto—Then It Got Complicated

Plus: The US warns of a mysterious military contractor breach, a "poisoned" version of the Tor Browser is tracking Chinese users, and more.

CVE-2022-42092: Backdrop CMS 1.22.0 — Unrestricted File Upload (Themes)

Backdrop CMS 1.22.0 has Unrestricted File Upload vulnerability via 'themes' that allows attackers to Remote Code Execution.

LofyGang Uses 100s of Malicious NPM Packages to Poison Open Source Software

The group has been operating for over a year, promoting their tools in hacking forums, stealing credit card information, and using typosquatting techniques to target open source software flaws.

LofyGang Distributed ~200 Malicious NPM Packages to Steal Credit Card Data

Multiple campaigns that distributed trojanized and typosquatted packages on the NPM open source repository have been identified as the work of a single threat actor dubbed LofyGang. Checkmarx said it discovered 199 rogue packages totaling thousands of installations, with the group operating for over a year with the goal of stealing credit card data as well as user accounts associated with

Hundreds of Microsoft SQL servers found to be backdoored

Categories: News Tags: Microsoft SQL Tags: brute force Tags: Maggie Tags: Extended Stored Procedure Researchers have found a backdoor that specifically targets Microsoft SQL servers. (Read more...) The post Hundreds of Microsoft SQL servers found to be backdoored appeared first on Malwarebytes Labs.

Iranian Hackers Spreading RatMilad Android Spyware Disguised as VPN App

By Waqas RatMilad can perform a wide range of malicious actions including file manipulation, audio recording, and application permission modification. This is a post from HackRead.com Read the original post: Iranian Hackers Spreading RatMilad Android Spyware Disguised as VPN App

Bogus job offers hide trojanised open-source software

Categories: News Tags: malware Tags: ZINC Tags: microsoft Tags: infection Tags: open source Tags: job offer Tags: fake Tags: LinkedIn A North Korean ZINC group is accused of creating compromised versions of KiTTY, PuTTY, TightVNC, and other popular open-source software apps (Read more...) The post Bogus job offers hide trojanised open-source software appeared first on Malwarebytes Labs.