GitHub is an useful development and versioning environment – part of it’s growth was to acquire another similar service NPM – a software depository. The software depository is now under possible attack from the simple of threat actors offering malicious packages with names that are just slightly different from the …
Near-undetectable malware
There are claims from Palo Alto Networks’ Unit 42 threat intelligence team that they have discovered a nearly undetectable strain of malware. The malware is contained in a CV for Roshan Bandara, but rather than the normal .pdf or Word file it is an image file -.iso. Near-undetectable malware linked …
.html Email attachment threats
We all look out for those malicious .pdf, Word and Excel attachments, when we are looking through our email. Research has now shown that the attached html file can be a huge threat. HTML attachments found to be the most malicious type of file | TechRepublic It is a difficult …
Active ransomware gets an update – UPDATED
Legitimate software vendors are always upgrading their offerings to give the user more features or a better experience. So we should not be surprised when threat actors who offer ransomware-as-a-service (RaaS) or malware-as-a-service (MaaS) update their malicious software with new features, including ones to avoid detection and mitigation. Hive ransomware …
Continue reading “Active ransomware gets an update – UPDATED”
Malware targets cryptocurrency wallets and browsers
The PennyWise malware is masquerading as crypto-coin mining software and being advertised in a variety of YouTube videos – showing that any communications method can be exploited for phishing attacks. PennyWise malware on YouTube targets cryptocurrency wallets and browsers | TechRepublic To help build confidence in the product, the threat …
Continue reading “Malware targets cryptocurrency wallets and browsers”
