Collaborate Disseminate
Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.
The post Lazarus Group deceives developers with 6 new malicious npm packages appeared first on CyberScoop.
Continue reading Lazarus Group deceives developers with 6 new malicious npm packages
The Department of Justice also indicted two men tied to the exchange.
The post Russian crypto exchange Garantex seized in international law enforcement operation appeared first on CyberScoop.
Continue reading Russian crypto exchange Garantex seized in international law enforcement operation
The amount stolen last week surpasses what the group was able to steal in all of 2024.
The post Crypto analysts stunned by Lazarus Group’s capabilities in $1.46B Bybit theft appeared first on CyberScoop.
Continue reading Crypto analysts stunned by Lazarus Group’s capabilities in $1.46B Bybit theft
The mixer was sanctioned after a North Korea hacking group used the software to launder more than $455 million.
The post Appeals court tosses sanctions on Tornado Cash crypto mixer appeared first on CyberScoop.
Continue reading Appeals court tosses sanctions on Tornado Cash crypto mixer
Researchers can’t tell if the malware was used in a campaign, or North Korean operatives were caught before they could deploy it in the wild.
The post North Korean-linked hackers were caught experimenting with new macOS malware appeared first on CyberScoop.
Continue reading North Korean-linked hackers were caught experimenting with new macOS malware
Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s account at Calendly, a popular free calendar application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call. But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems. Continue reading Calendar Meeting Links Used to Spread Mac Malware
Two years after it was disclosed, the Log4j vulnerability continues to enable North Korean hacking operations.
The post North Korean hacking ops continue to exploit Log4Shell appeared first on CyberScoop.
Continue reading North Korean hacking ops continue to exploit Log4Shell
Targets of the operation were given phony coding challenges that delivered a range of malware including a previously-unseen backdoor.
The post North Korean hackers posed as Meta recruiter on LinkedIn appeared first on CyberScoop.
Continue reading North Korean hackers posed as Meta recruiter on LinkedIn
“We have a security team, we do our own pentesting, we’ve got software scanners, we got a CSO … Nonetheless, they outsmarted us.”
The post ‘They outsmarted us.’ 3CX CEO acknowledges mistakes handling potential supply chain cyberattack appeared first on CyberScoop.
An attack that could be the work of the notorious Lazarus Group attempted to install infostealer malware inside corporate networks.
The post Supply chain cyberattack with possible links to North Korea could have thousands of victims globally appeared first on CyberScoop.