SecurityWeek

APT-Grade PDFSider Malware Used by Ransomware Groups

Attacks linked to APT and ransomware groups are relying on DLL sideloading for code execution instead of exploit-based ...

These fake Chrome extensions will crash your browser so that hackers can sneak in - here's how to stay safe

Usually, ClickFix would either be a pop-up on a page, or a fake .docx or .pdf document. The victims would be told they cannot ...
The Hacker News

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and cryptocurrency wallets on Windows.

This fake ad blocker malware impersonated uBlock Origin’s developer

An ad blocker that was hosted on the Chrome Web Store falsely claimed its code was written by Raymond Hill. It was, in fact, ...
Morning Overview on MSNOpinion

Leaked malware control panels could blow open cybercrime networks

Malware control panels are supposed to be the hidden nerve centers of cybercrime, the place where intruders quietly manage ...
CSO Online

CrashFix attack hijacks browser failures to deliver ModelRAT malware via fake Chrome extension

A malicious extension impersonating an ad blocker forces repeated browser crashes before pushing victims to run ...
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Confidential Apple data hacked in claimed Luxshare attack

Highly confidential information concerning Apple, the company’s business practices, and designs has allegedly been hacked in ...
Bitdefender

Lessons from the OpenWrt build-poison scare and what it means for your smart home

The OpenWrt build-poison scare reveals why router firmware supply-chain security matters for smart home and IoT users.
Cybernews

KongTuke’s CrashFix campaign uses fake Chrome adblocker to deploy ModeloRAT

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...
Council on Foreign Relations

Cyberspace Governance: The Next Step

Introduction After years of dismissing the utility of international negotiations on cyberspace, U.S. officials now say that ...