Cybersecurity

ResumeLooters Steal Millions of Unique Emails from Multiple Sites | Cyware Hacker News

A large-scale attack campaign attributed to the ResumeLotters threat group has come to the notice of Group-IB researchers. The campaign was active between November and December 2023 and was successfully launched against 65 websites to steal over two million unique emails.  Tactics used According to researchers, the group leveraged SQL injection and Cross-Site Scripting (XSS) […]

Cybersecurity

Chinese-speaking Users Targeted with ValleyRAT and Sainbox RAT | Cyware Hacker News

Researchers have come across a new email phishing campaign that distributes a new ValleyRAT malware alongside Sainbox RAT and Purple Fox malware onto the victim’s systems.  Active since the beginning of 2023, the campaign has been targeting Chinese-speaking users. So far, the researchers have observed over 30 attack campaigns leveraging these malware families and 20 […]

Cybersecurity

More Russian journalists investigating possible spyware infections

More Russian journalists have come forward this week expressing concern that they too may have been targeted with spyware, following the news that the prominent media figure Galina Timchenko was hacked with Pegasus. On Thursday, three Russian-speaking journalists reported that they have also recently received notifications from Apple warning them that their phones are potential […]

Cybersecurity

Threat Actors Target NPM, PyPI, and RubyGems Developers | Cyware Hacker News

Not one, not two, but three open-source software registries have come under attack at once in an organized cybercrime operation aimed at macOS users. A criminal group has uploaded harmful packages to PyPI, NPM, and RubyGems repositories to target respective developers. What happened? While scrutinizing the source code and metadata of registry-pushed packages, cybersecurity experts […]