Fake npm Website Used to Push Malware via Stolen Token
A phishing campaign targeting JavaScript developers has led to the compromise of several popular npm packages, including eslint-config-prettier. The breach began with an attacker tricking…
Category: HackRead
Microsoft Confirms Hackers Exploiting SharePoint Flaws, Patch Now
Microsoft has released new security updates to fix two serious vulnerabilities affecting on-premises SharePoint servers, warning that attackers are already exploiting them in active campaigns.…
New GhostContainer Malware Hits High-Value MS Exchange Servers in Asia
Cybersecurity researchers at Kaspersky’s research unit SecureList have revealed a new and highly customized malware, dubbed GhostContainer. This sophisticated backdoor has been found actively targeting…
SquidLoader Malware Campaign Hits Hong Kong Financial Firms
Trellix Advanced Research Center has exposed a new wave of highly sophisticated SquidLoader malware actively targeting financial services institutions in Hong Kong. This discovery, detailed…
Chinese Groups Launder $580M in India Using Fake Apps and Mule Accounts
CloudSEK’s new report uncovers how Chinese cyber syndicates are laundering over $600 million annually in India. Learn about the shadow banking empire using fake apps,…
PoisonSeed Tricking Users Into Bypassing FIDO Keys With QR Codes
Security researchers at Expel have detailed a new phishing technique that sidesteps the protection offered by physical FIDO (Fast Identity Online) security keys. While the…
Years Long Linux Cryptominer Spotted Using Legit Sites to Spread Malware
A recent investigation by VulnCheck has exposed a cryptomining campaign that has been running unnoticed for years. The threat actor behind this operation, using the…
New TeleMessage SGNL Flaw Is Actively Being Exploited by Attackers
TeleMessage SGNL, a made-in-Israel clone of the Signal app used by US government agencies and regulated businesses, has been found running with an outdated configuration…
Massive Data Leak at Texas Adoption Agency Exposes 1.1 Million Records
“While scanning the web for exposed databases, cybersecurity researcher Jeremiah Fowler discovered a massive set of unprotected records linked to the Gladney Center for Adoption,…
Police Shut Down 100 Servers Tied to Russian NoName057(16), Arrest 2
In a coordinated operation this week, law enforcement from a dozen countries gathered together in an attempt to dismantle the infrastructure of the pro-Russian hacking…
GitHub Abused to Spread Amadey, Lumma and Redline InfoStealers in Ukraine
A newly identified Malware-as-a-Service (MaaS) operation is using GitHub repositories to spread a mix of infostealer families. This campaign was spotted by cybersecurity researchers at…
Chinese Salt Typhoon Infiltrated US National Guard Network for Months
A sophisticated Chinese APT group, Salt Typhoon, successfully infiltrated the US state’s Army National Guard network for nearly a year, from March 2024 to December…