data theft
PyPI Malicious Package Uploads Used To Target Developers
Wajahat Raja | | Check Point, Checkmarx, countermeasures, Cyber Threats, Cybersecurity, Cybersecurity News, data theft, Developer Security, digital assets, Malicious package uploads, Malware, online security, package management, persistence, Phylum, PyPI, risk mitigation, software supply chain, Typosquatting, Windows operating system
In light of the recent cybercriminal activity, new user sign-ups on the PyPI platform were halted. Currently, an increase in PyPI malicious package uploads is being deemed the reason behind the suspension ...
BunnyLoader Malware: Modular Features Help Evade Detection
Wajahat Raja | | BunnyLoader malware, credential harvesting, cryptocurrency theft, Cybercrime Trends, Cybersecurity News, cybersecurity threats, data theft, Infection chains, Malware Analysis, Malware Detection, Malware evasion tactics, Malware Evolution, Modular malware, Palo Alto Networks Unit 42
In the ever-evolving landscape of cybersecurity threats, a new variant of malware has emerged, posing significant challenges for detection and mitigation efforts. Known as BunnyLoader malware, it has recently undergone a transformation, ...
Unveiling BlazeStealer Malware Python Packages on PyPI
Wajahat Raja | | BlazeStealer Malware, code obfuscation, Crypto-Themed npm Modules, Cyber Threats, Cybersecurity News, Cybersecurity Threat, data theft, developers, Discord Bot, Geographic Impact, Malicious Modules, open source development, Package Vetting, Phylum, Proactive Cybersecurity, PyPI, Python Packages, security breach, software supply chain security, Vigilance
In a recent revelation, a cluster of malicious Python packages has infiltrated the Python Package Index (PyPI), posing a significant threat to developers’ systems by aiming to pilfer sensitive information. These deceptive ...
ExelaStealer: Emerging Information Stealer Cyberweapon
Wajahat Raja | | Cyber Threats, cybercrime, Cybersecurity, Cybersecurity News, Cyberweapon, Data Security, data theft, ExelaStealer, Fortinet FortiGuard Labs, information stealer, James Slaughter, Malware, Python Malware
In the ever-evolving landscape of cybersecurity threats, a new information stealer has emerged known as ExelaStealer. This latest addition to the array of malicious software is causing a stir, targeting sensitive data ...
Special Guest Jayson E. Street, Phantom Hacker Scams, 23andMe User Data For Sale
Tom Eston | | 23andMe, credential stuffing, Cyber Security, Cybersecurity, Data breach, Data Privacy, data theft, Digital Privacy, DNA, DNA Data, Elderly, Elderly Scams, Episodes, FBI, Fraud, Information Security, Infosec, Jayson E Street, Jayson Street, Password, passwords, Phantom Hacker, Podcast, Podcasts, Privacy, Scams, Secure Yeti, security, Security Awareness, Senior Scams, Seniors, tech support scams, technology, weak passwords, Weekly Edition
In milestone episode 300, Jayson E. Street (a renowned hacker, helper, and human who has successfully robbed banks, hotels, government facilities, and Biochemical companies on five continents) joins us to share what ...
What are account takeovers (ATOs)?
Sift Trust and Safety Team | | Account Defense, Account Fraud, Account Takeover Fraud, account takeovers, ATO, ATO attacks, data theft, prevent account takeover
Account takeovers (ATOs) are a type of cyberattack, fraud risk, or identity theft that results in the unauthorized access of an account, typically through the use of stolen credentials. Once an account ...
JavaScript: A Taxing Situation
An authorized IRS eFile website is the latest victim of a JavaScript attack. eFile.com has become the victim of an attack which originated in a previously innocent JavaScript file. The javascript file, ...
Digital Skimming Attacks Skyrocket
Beware of digital skimming attacks! According to Visa's Spring 2023 Biannual Threats Report, digital skimming attacks targeting customer data on eCommerce checkout pages increased by 174% in the last half of 2022 ...
Fullz and Cybercrime: Why the BidenCash Data Dump Matters
BidenCash, which purposely leverages the namesake of U.S. President Joe Biden, has been operating for the past year and has become one of the top carding marketplaces on the dark web. But ...
How to Protect Your Organization From Account Takeovers
Eyal Benishti | | Account Takeover Attacks, business email compromise, data theft, Phishing, Ransomware, stolen credentials
The year 2021 was a big one for account takeover (ATO) attacks. According to a Javelin strategy and research study, losses from account takeovers increased by 90% in 2021 to $11.4 billion ...
Security Boulevard