GlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer Tools
GlassWorm Returns with 24 Malicious Extensions Targeting Developer Tools The supply chain attack campaign known as GlassWorm has resurfaced, this…
Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera
Researchers Capture Lazarus APT’s Remote-Worker Scheme Live on Camera A joint investigation led by Mauro Eldritch, founder of BCA LTD,…
Iran-Linked Hackers Hits Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks
Iran Linked Hackers Hits Israeli Sectors with New MuddyViper Backdoor Israeli organizations across multiple sectors have recently become targets of…
SecAlerts Cuts Through the Noise with a Smarter, Faster Way to Track Vulnerabilities
SecAlerts Cuts Through the Noise with a Smarter, Faster Way to Track Vulnerabilities Vulnerability management is a fundamental part of…
Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild
Google Patches 107 Android Flaws, Including Two Exploited in the Wild On Monday, Google released its latest monthly security updates…
Why Organizations Are Turning to RPAM
Why Organizations Are Turning to Modern Access Solutions As IT environments grow more distributed and organizations embrace hybrid and remote…
North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware
North Korean Hackers Deploy 197 Malicious npm Packages to Spread OtterCookie Malware The North Korean hackers behind the Contagious Interview…
Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages
Legacy Python Bootstrap Scripts Pose Domain-Takeover Risk in PyPI Packages Cybersecurity researchers have identified a significant security risk involving legacy…
CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV
CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV Catalog The U.S. Cybersecurity and Infrastructure Security Agency…
Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets
Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets The threat actor known as Tomiris has…