Malware

Multiple crypto packages hijacked, turned into info-stealers

Multiple crypto packages hijacked, turned into info-stealers

| | Malware, npm, Vulnerabilities
Sonatype has identified multiple npm cryptocurrency packages, latest versions of which have been hijacked and altered to steal sensitive information such as environment variables from the target victims ...
2024 Sonatype Blog
Apache Tomcat: Vulnerable versions downloaded nearly 100K times since PoC

Apache Tomcat: Vulnerable versions downloaded nearly 100K times since PoC

| | Apache Tomcat, Malware, Remote Code Execution, Security Vulnerabilities, Tomcat
A rapidly exploited vulnerability with a major blast radius A recently disclosed vulnerability in Apache Tomcat, CVE-2025-24813, is drawing significant attention due to its ease of exploitation, rapid adoption by attackers, and ...
2024 Sonatype Blog
LLMs, MCP, Cato, AI, jailbreak, cybersecurity, DeepSeek, LLM, LLMs, attacks, multi-agent, Cybersecurity, AI, security, risk, Google AI LLM vulnerability

Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique

| | AI (Artificial Intelligence), DeepSeek AI, llm security, Microsoft Copilot, OpenAI ChatGPT
A Cato Networks threat researcher with little coding experience was able to convince AI LLMs from DeepSeek, OpenAI, and Microsoft to bypass security guardrails and develop malware that could steal browser passwords ...
Security Boulevard
Microsoft CEO Satya Nadella

Microsoft Won’t Fix This Bad Zero Day (Despite Wide Abuse)

| | .lnk, APT37, APT43, BitterAPT, china espionage, CWE-451, Cybersecurity zero-day flaw, Earth Anansi, Earth Imp, Earth Kumiho, Earth Manticore, Evil Corp., InkySquid, Iranian hackers, kimsuky, Kimsuky hacking group, Konni, LNK file malware, LNKFiles, malicious LNK files, Microsoft, Microsoft Windows Zero Day, North Korean cyber espionage, russia hacker, SB Blogwatch, ScarCruft, Windows, ZDI-CAN-25373, Zero Day Attacks, zero day exploit attack, Zero Day Initiative, Zero Day Initiative (ZDI), zero-day, zero-day attack, Zero-Day Bug
Satya says NO: Redmond blames Windows users, rather than solve 30-year-old bug—exploited since 2017 ...
Security Boulevard
russia, EDR, threats, CrowdStrike Microsoft outages DDoS

China, Russia, North Korea Hackers Exploit Windows Security Flaw

| | china espionage, Iranian hackers, Microsoft Windows Zero Day, North Korean cyber espionage, russia hacker
Amost a dozen state-sponsored threat groups from Russia, China, and North Korea have been exploiting a security flaw in WIndows in attacks on governments and critical infrastructure that date back to 2017 ...
Security Boulevard
disney, code, data, API security ransomware extortion shift

New Akira Ransomware Decryptor Leans on Nvidia GPU Power

| | Akira ransomware, Nvidia RTX 4090 GPU, ransomware decryptor
A software programmer developed a way to use brute force to break the encryption of the notorious Akira ransomware using GPU compute power and enabling some victims of the Linux-focused variant of ...
Security Boulevard
Application security trends: Shift-left security, AI, and open source malware

Application security trends: Shift-left security, AI, and open source malware

| | Application Security, Artificial Intelligence, Malware, open source, shift left
Software is at the heart of business operations across most industries, which means application security has never been more critical. However, as organizations embrace cloud-native architectures, microservices, and open source components, the ...
2024 Sonatype Blog
enemies, CISA, security,trump, states, infrastructure, PCLOB, president, Donald John Trump, President of the U.S.

Hackers Use Trump’s Coin, Binance’s Name in Crypto Phishing Scam

| | Binance, crypto cons, Donald Trump, Remote Access Trojan (RAT)
Threat actors are running an email phishing scam to entice victims to install Binance software in hopes of collecting TRUMP coins. However, if they try, they instead get the ConnectWise RAT installed ...
Security Boulevard
workforce, systems, security, security, spyware

Suspected North Korea Group Targets Android Devices with Spyware

| | android spyware, mobile cyberattack, North Korean cyber espionage
A North Korea-backed threat group, APT37, disguised KoSpy as utility apps in Google Play to infect Android devices, using the spyware for such activities as gathering sensitive information, tracking locations, capturing screenshots, ...
Security Boulevard
Cartoon of Elon Musk looking sad

No, Elon — X DDoS was NOT by Ukraine

| | Cloudflare DDoS Protection, cyber attacks during ukraine war, cyber attacks russia, Dark Storm Team, ddos, DDoS attack, Denial of Service, Denial of Service (DoS) attacks, denial of service attacks, denial of service vulnerability, distributed denial of service, Distributed denial of service (DDoS) attacks, distributed denial of service attack, Elon Musk, elon musk twitter, hacktivism ukraine cyber-attacks, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, social media, Social Media Attack, social media attacks, social media cyber attacks, Social Media Cybercrime, Social Media Exploits, Ukraine, ukraine conflict, Ukraine Cyber War, Ukraine-Russia War, Ukraine/European Security, X
X marks the botnet: Outage outrage was a Ukrainian cyberattack, implies our favorite African billionaire comedy villain ...
Security Boulevard
Load more