SecurityWeek

Chinese Hackers Lurked Nearly 400 Days in Networks With Stealthy BrickStorm Malware

Chinese cyberspies have managed to dwell in compromised networks for hundreds of days to obtain valuable information.
Infosecurity Magazine

Phishing Campaign Evolves into PureRAT Deployment, Linked to Vietnamese Threat Actors

The attackers used process hollowing against RegAsm.exe, patched Windows defenses such as AMSI and ETW and unpacked further ...
SecurityWeek

PyPI Warns Users of Fresh Phishing Campaign

PyPI, the default platform for Python's package management tools, is warning users of a fresh phishing campaign.

‘Help! My robot vac is stealing my Bitcoin’: When smart devices attack

There are billions of internet-connected smart home devices in the world. Any one of them could be hacked to get your crypto.
The Hacker News

North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers

North Korea’s Contagious Interview spreads AkdoorTea and TsunamiKit to steal crypto and infiltrate global developers.
CSO Online

Evolved PXA Stealer wraps PureRAT in multi-layer obfuscation

The stealer campaign has evolved into a multi-stage delivery chain that ultimately deploys the modular, feature-rich PureRAT.

Python developers targeted with new password-stealing phishing attacks - here's how to stay safe

“If you have already clicked on the link and provided your credentials, we recommend changing your password on PyPI immediately,” Larson warned. “Inspect your account's Security History for anything ...
CyberGuy

North Korean hackers use AI to forge military IDs

Hackers from North Korea and China are exploiting AI to forge IDs, infiltrate companies, and supercharge espionage campaigns.