Malicious NPM, PyPI Packages Stealing User Information
Check Point and Phylum are warning of recently identified NPM and PyPI packages designed to steal user information and download ...
Read moreTag: Malicious
Malicious Prompt Engineering With ChatGPT
The release of OpenAI’s ChatGPT available to everyone in late 2022 has demonstrated the potential of AI for both good ...
Read more
User Documents Overwritten With Malicious Code in Recent Dridex Attacks on macOS
The cybercriminals behind the Dridex banking trojan have adopted a new tactic in recent attacks targeting macOS devices, overwriting the ...
Read more
Microsoft-Signed Malicious Driver Used in Pre-Ransomware Intrusions
Researchers from three separate organizations recently discovered that threat actors were deploying a malicious Windows driver that had been signed ...
Read more
Microsoft Defender protects Mac and Linux from malicious websites
Image: freestocks/Unsplash Microsoft’s security tools aren’t just for Microsoft platforms, because attackers don’t just go after Windows. “Over the last ...
Read more
Malicious Oauth app enables attackers to send spam through corporate cloud tenants
Microsoft investigated a new kind of attack where malicious OAuth applications were deployed on compromised cloud tenants before being used ...
Read more
North Korean Attackers Use Malicious Browser Extension to Steal Email
A notorious attack group based in North Korea has been deploying a malicious browser extension for Chrome and Edge that ...
Read moreMalicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft Protections
Threat actors are embedding macro-enabled Office documents in container files such as archives and disk images to circumvent a recently ...
Read more
HTML attachments found to be the most malicious type of file
Barracuda Networks found that HTML attachments were malicious more than double than the next leading type of file. Image: iStock/OrnRin ...
Read more
Dozens of Malicious Data-Harvesting NPM Packages Found
Researchers have uncovered a software supply-chain attack involving packages hosted on the Node Package Manager (npm), which is the package ...
Read more