Security News

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack
2024-12-20 08:39

The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish...

Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining
2024-10-26 09:06

The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for mining cryptocurrencies and renting out breached...

Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks
2024-10-22 14:00

Bad actors have been observed targeting Docker remote API servers to deploy the SRBMiner crypto miner on compromised instances, according to new findings from Trend Micro. "In this attack, the...

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking
2024-10-03 14:15

Linux servers are the target of an ongoing campaign that delivers a stealthy malware dubbed perfctl with the primary aim of running a cryptocurrency miner and proxyjacking software. "Perfctl is...

Exposed Selenium Grid Servers Targeted for Crypto Mining and Proxyjacking
2024-09-12 12:56

Internet-exposed Selenium Grid instances are being targeted by bad actors for illicit cryptocurrency mining and proxyjacking campaigns. "Selenium Grid is a server that facilitates running test...

Atlassian Confluence Vulnerability Exploited in Crypto Mining Campaigns
2024-08-30 06:12

Threat actors are actively exploiting a now-patched, critical security flaw impacting the Atlassian Confluence Data Center and Confluence Server to conduct illicit cryptocurrency mining on...

New Malware PG_MEM Targets PostgreSQL Databases for Crypto Mining
2024-08-22 04:31

Cybersecurity researchers have unpacked a new malware strain dubbed PG_MEM that's designed to mine cryptocurrency after brute-forcing their way into PostgreSQL database instances. "Brute-force...

New Gafgyt Botnet Variant Targets Weak SSH Passwords for GPU Crypto Mining
2024-08-15 05:12

Cybersecurity researchers have discovered a new variant of the Gafgyt botnet that's targeting machines with weak SSH passwords to ultimately mine cryptocurrency on compromised instances using their GPU computational power. The infected devices are corralled into a botnet capable of launching distributed denial-of-service attacks against targets of interest.

Australian gold mining company hit with ransomware
2024-08-13 11:16

Australian gold mining firm Evolution Mining has announced on Monday that it became aware on 8 August 2024 of a ransomware attack impacting its IT systems, and has been working with its external cyber forensic experts to investigate the incident. "Based on work to date, the Company believes the incident is now contained," Evolution Mining said.

Australian gold producer Evolution Mining hit by ransomware
2024-08-12 18:02

Evolution Mining has informed that it has been targeted by a ransomware attack on August 8, 2024, which impacted its IT systems. [...]