Search results: malware

Another Day of Malware: Malicious ‘botaa3’ PyPI Package Taken Down

| | FEATURED, Vulnerabilities
Sonatype’s automated malware detection systems have discovered yet another malicious package on the PyPI repository ...
Microscope - tardigrade

Sophisticated Tardigrade malware launches attacks on vaccine manufacturing infrastructure

Security researchers are warning biomanufacturing facilities around the world that they are being targeted by a sophisticated new strain of malware, known as Tardigrade. The warning comes from the non-profit Bioeconomy Information ...

Tracking the ‘Noblox.js’ npm Malware Campaign

A new malicious package, noblox.js-rpc was spotted on the npm registry this month that leverages the same techniques we saw before to steal all sorts of sensitive data like credentials, files, and ...

Return of Emotet malware

|
Key Points Emotet is one of the most dangerous, prolific, and long-lasting malware Trojans that has ever existed. In January 2021, a law enforcement action disrupted the Emotet malware and its infrastructure ...
Malware Analysis Part 3: The phases and roles of incident response

Malware Analysis Part 3: The phases and roles of incident response

In Part 3 of this series, I’m going to cover incident response and the role it plays in malware analysis. If you haven’t had a chance to read the earlier parts of ...

NPM Hijackers at it Again: Popular ‘coa’ and ‘rc’ Open Source Libraries Taken Over to Spread Malware

Just last week we saw the popular npm package `ua-parser-js` get hijacked. Malicious actors gained access to the project maintainer’s npm account and published malicious versions that attempted to install a cryptominer ...

Benefits of a Website Malware Scanner

Malicious code/ software can wreak havoc for the business, from account takeover and database tampering to stealing data and causing other forms of cyberattacks. A website malware scanner enables organizations to proactively address the challenge. The post ...

Spike in DanaBot Malware Activity

|
Key Points Two large software supply chain attacks distributed the DanaBot malware. DanaBot is a malware-as-a-service platform discovered in 2018 that focuses on credential theft and banking fraud. DanaBot’s popularity has waned ...
Malware Analysis Part 2: What benefit does it serve?

Malware Analysis Part 2: What benefit does it serve?

In Part 1 of this blog series, we covered a (somewhat) brief introduction to malware analysis. We learned how malware analysis is performed in general and the various types of analysis–triage, dynamic, ...
Types of Malware: How to Detect and Prevent Them

Types of Malware: How to Detect and Prevent Them

Malware attacks are costly and destructive. Learn about the different types of malware, how they work and how to protect your data from these threats ...