Browsing Category
Incident Response
111 posts
Malicious Python Package Hides Sliver C2 Framework in Fake Requests Library Logo
Cybersecurity researchers have identified a malicious Python package that purports to be an offshoot of the popular requests library and has been found concealing a Golang-version of the Sliver command-and-control (C2) framework within a PNG image of the project's logo.
The package employing this steganographic trickery is requests-darwin-lite, which has been
New Spectre-Style ‘Pathfinder’ Attack Targets Intel CPU, Leak Encryption Keys and Data
Researchers have discovered two novel attack methods targeting high-performance Intel CPUs that could be exploited to stage a key recovery attack against the Advanced Encryption Standard (AES) algorithm.
The techniques have been collectively dubbed Pathfinder by a group of academics from the University of California San Diego, Purdue University, UNC Chapel
‘Lifelock’ hacker pleads guilty to extorting medical clinics
An Idaho man who hacked and extorted medical clinics and a police department pleaded guilty on Tuesday in Georgia federal court to charges of computer fraud and abuse.
China-linked hackers target governments and more in Southeast Asia with new backdoors
A China-linked espionage group has been observed targeting government agencies, educational institutions and the communications industry with two custom backdoors, according to the new research.
FTC investigating Reddit plan to sell user content for AI model training
The Federal Trade Commission (FTC) is probing Reddit’s decision to license its user-generated content to artificial intelligence companies which would in turn use it to train models, the social media platform said in a Friday securities filing.
Fujitsu says it discovered malware on ‘multiple work computers’ that may expose customer data
Japanese tech corporation Fujitu warned its customers that personal information may have been obtained by hackers who deployed malware on multiple computers at the company’s offices.
US is still chasing down pieces of Chinese hacking operation, NSA official says
The U.S. government has yet to learn the full extent of a massive Chinese espionage campaign that targeted American critical infrastructure, according to a senior National Security Agency official.
Moldovan national sentenced in E-Root cybercrime marketplace case
A 31-year-old Moldovan national was sentenced to 42 months in U.S. federal prison for operating a series of websites used to sell access to compromised computers worldwide, the U.S. Department of Justice said on Thursday
IMF says February cyberattack involved compromise of 11 email accounts
A cyberattack in February led to the compromise of 11 email accounts at the International Monetary Fund (IMF), the organization said on Friday.
Russia targets hundreds of Americans with new sanctions, including cyber journalists
Russia has banned entry to 227 U.S. citizens, including prominent journalists, researchers, and government officials as part of a new spate of sanctions targeting Americans supporting Washington’s “Russophobic policies,” the Russian Foreign Ministry