Security News

North Korean Lazarus hackers infect hundreds via npm packages
2025-03-11 20:42

Six malicious packages have been identified on npm (Node package manager) linked to the notorious North Korean hacking group Lazarus. [...]

Silk Typhoon Hackers Indicted
2025-03-11 17:14

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the...

Microsoft: North Korean hackers join Qilin ransomware gang
2025-03-07 12:10

Microsoft says a North Korean hacking group tracked as Moonstone Sleet has deployed Qilin ransomware payloads in a limited number of attacks. [...]

Safe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit Heist
2025-03-07 05:40

Safe{Wallet} has revealed that the cybersecurity incident that led to the Bybit $1.5 billion crypto heist is a "highly sophisticated, state-sponsored attack," stating the North Korean threat...

Silk Typhoon hackers now target IT supply chains to breach networks
2025-03-05 18:18

Microsoft warns that Chinese cyber-espionage threat group 'Silk Typhoon' has shifted its tactics, now targeting remote management tools and cloud services in supply chain attacks that give them...

US charges Chinese hackers linked to critical infrastructure breaches
2025-03-05 17:23

The US Justice Department has charged Chinese state security officers along with APT27 and i-Soon hackers for network breaches and cyberattacks that have targeted victims globally since 2011. [...]

Suspected Iranian Hackers Used Compromised Indian Firm's Email to Target U.A.E. Aviation Sector
2025-03-04 09:58

Threat hunters are calling attention to a new highly-targeted phishing campaign that singled out "fewer than five" entities in the United Arab Emirates (U.A.E.) to deliver a previously...

Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail
2025-03-03 17:26

Threat actors are targeting Amazon Web Services (AWS) environments to push out phishing campaigns to unsuspecting targets, according to findings from Palo Alto Networks Unit 42. The cybersecurity...

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites
2025-03-03 14:00

Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control (C2) framework called Havoc. "The...

Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks
2025-03-03 13:56

Threat actors have been exploiting a security vulnerability in Paragon Partition Manager's BioNTdrv.sys driver in ransomware attacks to escalate privileges and execute arbitrary code. The zero-day...