Sec posts on cve research

Malware can take various forms, including viruses, worms, Trojans, ransomware, spyware, and more. Its primary goal is to compromise the integrity, confidentiality, or availability of information, often for financial gain, espionage, or other malicious purposes. What are the 4 main types of malware? 4 Types of malware Virus. A virus can replicate itself and therefore spreads quickly as it attaches itself to another commonly used, legitimate program on a computer. ... Worm. Like a virus, worms are infectious and are designed by cybercriminals to replicate themselves. ... Botnets. ... Ransomware. 4 Types of malware Malware can go by many names. You’ve probably heard of some or all of the following common types of malware: Virus A virus can replicate itself and therefore spreads quickly as it attaches itself to another commonly used, legitimate program on a computer. A virus can also be transported. If the virus attaches to a music file, for instance, the virus goes with that file if it’s ...

Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library for detecting vulnerabilities in Ethereum smart contracts but, in reality, drops an open-source remote access trojan called Quasar RAT onto developer systems. The heavily obfuscated package, named  ethereumvulncontracthandler , was published to npm on December 18, 2024, by a user named "solidit-dev-416." As of writing, it continues to be available for download. It has been  downloaded 66 times  to date. "Upon installation, it retrieves a malicious script from a remote server, executing it silently to deploy the RAT on Windows systems," Socket security researcher Kirill Boychenko  said  in an analysis published last month. The malicious code embedded into ethereumvulncontracthandler is obscured with multiple layers of obfuscation, leveraging techniques like Base64- and XOR-encoding, as well as minification to resist analysis and detection effort...

The company's India operations are based out of Mumbai. While accessing the company's website after the development,  Mint  found that the homepage was flagging an Error 503, and the  Google  search results were also showing an error page instead of the travel agency's website on December 31. Thomas Cook India's website takes a hit, as users find Error 503 on the homepage. Google search results for Thomas Cook India website on December 31. What is an Error 503? According to  Microsoft 's official support blog, Error 503 occurs when the website is in a stopped state from the owner's side. “The ‘503 Service Unavailable’ message typically appears when the application pool is in a stopped state," said Pradeep Sharma in the support blog post. Topics You May Be Interested In cybercrimes Catch all the  Business News  ,  Corporate news  ,  Breaking News  Events and  Latest News  Updates on Live Mint. Download The  Mint News A...

Japanese and U.S. authorities have formerly attributed the theft of cryptocurrency worth $308 million from cryptocurrency company DMM Bitcoin in May 2024 to North Korean cyber actors. "The theft is affiliated with TraderTraitor threat activity, which is also tracked as Jade Sleet, UNC4899, and Slow Pisces," the agencies  said . "TraderTraitor activity is often characterized by targeted social engineering directed at multiple employees of the same company simultaneously." The alert comes courtesy of the U.S. Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center, and the National Police Agency of Japan. It's worth noting that DMM Bitcoin  shut down its operations  earlier this month in the aftermath of the hack. TraderTraitor  refers to a North Korea-linked persistent threat activity cluster that has a history of targeting companies in the Web3 sector, luring victims into downloading malware-laced cryptocurrency apps and ultimately fa...

Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python Package Index (PyPI) repository and came fitted with capabilities to exfiltrate sensitive information from compromised hosts, according to  new findings  from Fortinet FortiGuard Labs. The packages, named  zebo  and  cometlogger , attracted 118 and 164 downloads each, prior to them being taken down. According to ClickPy statistics, a  majority  of these  downloads  came from the United States, China, Russia, and India. Zebo is a "typical example of malware, with functions designed for surveillance, data exfiltration, and unauthorized control," security researcher Jenna Wang said, adding cometlogger "also shows signs of malicious behavior, including dynamic file manipulation, webhook injection, stealing information, and anti-[virtual machine] checks." The first of the two packages, zebo, uses obfuscation techniques, such as hex-encoded strings, to co...