New string of phishing attacks targets Python developers

If you recently got an email asking you to verify your credentials to a PyPI site, better change that password ...

North Korea's Lazarus Group shares its malware with IT work scammers

North Korean-linked crews connected to the pervasive IT worker scams have upped their malware game, using more advanced tools ...
GovInfoSecurity

Stop Malware at Build Time, Not Runtime

Dustin Kirkland of Chainguard explains how verified, hardened components and AI-powered automation can prevent malware ...

Python developers targeted with new password-stealing phishing attacks - here's how to stay safe

“If you have already clicked on the link and provided your credentials, we recommend changing your password on PyPI ...

North Korean Hackers Deploy New “AkdoorTea” Backdoor

North Korean hackers are intensifying their global campaign against cryptocurrency and Web3 developers, using a new backdoor ...
WeLiveSecurity

DeceptiveDevelopment: From primitive crypto theft to sophisticated AI-based deception

ESET researchers reveal how malware operators collaborate with covert North Korean IT workers, posing a threat to both headhunters and job seekers.
The Hacker News

North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers

North Korea’s Contagious Interview spreads AkdoorTea and TsunamiKit to steal crypto and infiltrate global developers.
The Hacker News

Researchers Expose SVG and PureRAT Phishing Threats Targeting Ukraine and Vietnam

According to Fortinet, Amatera Stealer and PureMiner are both deployed as fileless threats, with the malware "executed via ...
SecurityWeek

PyPI Warns Users of Fresh Phishing Campaign

PyPI, the default platform for Python's package management tools, is warning users of a fresh phishing campaign.
Infosecurity Magazine

ShadowV2 Botnet Exposes Rise of DDoS-as-a-service Platforms

The ShadowV2 DDoS operation, discovered by Darktrace, uses a command-and-control framework hosted on GitHub CodeSpaces, a ...
SecurityWeek

ShadowV2 DDoS Service Lets Customers Self-Manage Attacks

New DDoS botnet ShadowV2 targets misconfigured Docker containers and offers a service model where customers launch their own ...
CSO Online

Evolved PXA Stealer wraps PureRAT in multi-layer obfuscation

The stealer campaign has evolved into a multi-stage delivery chain that ultimately deploys the modular, feature-rich PureRAT.