Latest News

1 minute read

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

info@thehackernews.com (The Hacker News)

April 5, 2025

The North Korean threat actors behind the ongoing Contagious Interview campaign are spreading their tentacles on the npm ecosystem by publishing more malicious packages that deliver the BeaverTail malware, as well as a new remote access trojan (RAT) loader. “These latest samples employ hexadecimal string encoding to evade automated detection systems and manual code audits, signaling a variation

[[{“value”:”The North Korean threat actors behind the ongoing Contagious Interview campaign are spreading their tentacles on the npm ecosystem by publishing more malicious packages that deliver the BeaverTail malware, as well as a new remote access trojan (RAT) loader.
“These latest samples employ hexadecimal string encoding to evade automated detection systems and manual code audits, signaling a variation”}]] The Hacker News

Latest News

Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data

April 5, 2025

Latest News

Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws

April 5, 2025

2 min

Latest News

Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017

An unpatched security flaw impacting Microsoft Windows has been exploited by 11 state-sponsored groups from China, Iran, North Korea, and Russia as part of data theft, espionage, and financially motivated campaigns that date back to 2017. The zero-day vulnerability, tracked by Trend Micro's Zero Day Initiative (ZDI) as ZDI-CAN-25373, refers to an issue that allows bad actors to execute hidden

info@thehackernews.com (The Hacker News)

March 18, 2025

4 min

Latest News

Top White House cyber official urges Trump to focus on ransomware, China

When President Donald Trump once again takes office in January, he’ll have to confront some of the same…

November 13, 2024

3 min

Latest News

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited, could enable attackers to gain unauthorized access to files, inject malicious data, and tamper with logs under certain conditions. The vulnerabilities, flagged by cybersecurity vendor OPSWAT, are listed below - CVE-2025-27610 (CVSS score: 7.5) - A path traversal

info@thehackernews.com (The Hacker News)

April 25, 2025

Hand-Picked Top-Read Stories

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Microsoft and CrowdStrike Launch Shared Threat Actor Glossary to Cut Attribution Confusion

New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch

Trending Tags

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

Previous Post

Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data

Next Post

Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Microsoft and CrowdStrike Launch Shared Threat Actor Glossary to Cut Attribution Confusion

New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch

International operation takes down crypting sites used for testing malware

Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools from GitHub

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

Previous Post

Next Post

Related Posts