Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links

Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links,

In what’s a continuing assault on the open source ecosystem, over 15,000 spam packages have flooded the npm repository in an attempt to distribute phishing links.
« The packages were created using automated processes, with project descriptions and auto-generated names that closely resembled one another, » Checkmarx researcher Yehuda Gelb said in a Tuesday report.
« The attackers referred to retail

,

In what’s a continuing assault on the open source ecosystem, over 15,000 spam packages have flooded the npm repository in an attempt to distribute phishing links.
« The packages were created using automated processes, with project descriptions and auto-generated names that closely resembled one another, » Checkmarx researcher Yehuda Gelb said in a Tuesday report.
« The attackers referred to retail

, ,
https://thehackernews.com/2023/02/attackers-flood-npm-repository-with.html

3 Steps to Automate Your Third-Party Risk Management Program

3 Steps to Automate Your Third-Party Risk Management Program,

If you Google « third-party data breaches » you will find many recent reports of data breaches that were either caused by an attack at a third party or sensitive information stored at a third-party location was exposed. Third-party data breaches don’t discriminate by industry because almost every company is operating with some sort of vendor relationship – whether it be a business partner,

,

If you Google « third-party data breaches » you will find many recent reports of data breaches that were either caused by an attack at a third party or sensitive information stored at a third-party location was exposed. Third-party data breaches don’t discriminate by industry because almost every company is operating with some sort of vendor relationship – whether it be a business partner,

, ,
https://thehackernews.com/2023/02/3-steps-to-automate-your-third-party.html

Hydrochasma: New Threat Actor Targets Shipping Companies and Medical Labs in Asia

Hydrochasma: New Threat Actor Targets Shipping Companies and Medical Labs in Asia,

Shipping companies and medical laboratories in Asia have been the subject of a suspected espionage campaign carried out by a never-before-seen threat actor dubbed Hydrochasma.
The activity, which has been ongoing since October 2022, « relies exclusively on publicly available and living-off-the-land tools, » Symantec, by Broadcom Software, said in a report shared with The Hacker News.
There is no

,

Shipping companies and medical laboratories in Asia have been the subject of a suspected espionage campaign carried out by a never-before-seen threat actor dubbed Hydrochasma.
The activity, which has been ongoing since October 2022, « relies exclusively on publicly available and living-off-the-land tools, » Symantec, by Broadcom Software, said in a report shared with The Hacker News.
There is no

, ,
https://thehackernews.com/2023/02/hydrochasma-new-threat-actor-targets.html

L’ADN de 2,1 millions de personnes a été piraté à cause d’une incroyable négligence

L’ADN de 2,1 millions de personnes a été piraté à cause d’une incroyable négligence,

adn

Une entreprise spécialisée dans les tests ADN a été piratée. Lors de l’attaque, les hackers ont subtilisé les données relatives au génome de 2,1 millions d’individus. Tout cela à cause de la négligence de la société en matière de sécurité informatique…

,

adn

Une entreprise spécialisée dans les tests ADN a été piratée. Lors de l’attaque, les hackers ont subtilisé les données relatives au génome de 2,1 millions d’individus. Tout cela à cause de la négligence de la société en matière de sécurité informatique…

, ,
https://www.01net.com/actualites/adn-21-millions-personnes-pirate-negligence.html

Threat Actors Adopt Havoc Framework for Post-Exploitation in Targeted Attacks

Threat Actors Adopt Havoc Framework for Post-Exploitation in Targeted Attacks,

An open source command-and-control (C2) framework known as Havoc is being adopted by threat actors as an alternative to other well-known legitimate toolkits like Cobalt Strike, Sliver, and Brute Ratel.
Cybersecurity firm Zscaler said it observed a new campaign in the beginning of January 2023 targeting an unnamed government organization that utilized Havoc.
« While C2 frameworks are prolific, the

,

An open source command-and-control (C2) framework known as Havoc is being adopted by threat actors as an alternative to other well-known legitimate toolkits like Cobalt Strike, Sliver, and Brute Ratel.
Cybersecurity firm Zscaler said it observed a new campaign in the beginning of January 2023 targeting an unnamed government organization that utilized Havoc.
« While C2 frameworks are prolific, the

, ,
https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html

Gcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan Client

Gcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan Client,

At the beginning of January, Gcore faced an incident involving several L3/L4 DDoS attacks with a peak volume of 650 Gbps. Attackers exploited over 2000 servers belonging to one of the top three cloud providers worldwide and targeted a client who was using a free CDN plan. However, due to Gcore’s distribution of infrastructure and a large number of peering partners, the attacks were mitigated,

,

At the beginning of January, Gcore faced an incident involving several L3/L4 DDoS attacks with a peak volume of 650 Gbps. Attackers exploited over 2000 servers belonging to one of the top three cloud providers worldwide and targeted a client who was using a free CDN plan. However, due to Gcore’s distribution of infrastructure and a large number of peering partners, the attacks were mitigated,

, ,
https://thehackernews.com/2023/02/gcore-thwarts-massive-650-gbps-ddos.html

U.S. Cybersecurity Agency CISA Adds Three New Vulnerabilities in KEV Catalog

U.S. Cybersecurity Agency CISA Adds Three New Vulnerabilities in KEV Catalog,

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The list of shortcomings is as follows –

CVE-2022-47986 (CVSS score: 9.8) – IBM Aspera Faspex Code Execution Vulnerability
CVE-2022-41223 (CVSS score: 6.8) – Mitel MiVoice Connect Code Injection

,

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The list of shortcomings is as follows –

CVE-2022-47986 (CVSS score: 9.8) – IBM Aspera Faspex Code Execution Vulnerability
CVE-2022-41223 (CVSS score: 6.8) – Mitel MiVoice Connect Code Injection

, ,
https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html

VMware Patches Critical Vulnerability in Carbon Black App Control Product

VMware Patches Critical Vulnerability in Carbon Black App Control Product,

VMware on Tuesday released patches to address a critical security vulnerability affecting its Carbon Black App Control product.
Tracked as CVE-2023-20858, the shortcoming carries a CVSS score of 9.1 out of a maximum of 10 and impacts App Control versions 8.7.x, 8.8.x, and 8.9.x.
The virtualization services provider describes the issue as an injection vulnerability. Security researcher Jari

,

VMware on Tuesday released patches to address a critical security vulnerability affecting its Carbon Black App Control product.
Tracked as CVE-2023-20858, the shortcoming carries a CVSS score of 9.1 out of a maximum of 10 and impacts App Control versions 8.7.x, 8.8.x, and 8.9.x.
The virtualization services provider describes the issue as an injection vulnerability. Security researcher Jari

, ,
https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html

MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily

MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily,

A sophisticated botnet known as MyloBot has compromised thousands of systems, with most of them located in India, the U.S., Indonesia, and Iran.
That’s according to new findings from BitSight, which said it’s « currently seeing more than 50,000 unique infected systems every day, » down from a high of 250,000 unique hosts in 2020.
Furthermore, an analysis of MyloBot’s infrastructure has found

,

A sophisticated botnet known as MyloBot has compromised thousands of systems, with most of them located in India, the U.S., Indonesia, and Iran.
That’s according to new findings from BitSight, which said it’s « currently seeing more than 50,000 unique infected systems every day, » down from a high of 250,000 unique hosts in 2020.
Furthermore, an analysis of MyloBot’s infrastructure has found

, ,
https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html

The Future of Network Security: Predictive Analytics and ML-Driven Solutions

The Future of Network Security: Predictive Analytics and ML-Driven Solutions,

As the digital age evolves and continues to shape the business landscape, corporate networks have become increasingly complex and distributed. The amount of data a company collects to detect malicious behaviour constantly increases, making it challenging to detect deceptive and unknown attack patterns and the so-called « needle in the haystack ». With a growing number of cybersecurity threats,

,

As the digital age evolves and continues to shape the business landscape, corporate networks have become increasingly complex and distributed. The amount of data a company collects to detect malicious behaviour constantly increases, making it challenging to detect deceptive and unknown attack patterns and the so-called « needle in the haystack ». With a growing number of cybersecurity threats,

, ,
https://thehackernews.com/2023/02/the-future-of-network-security.html