GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

PyStoreRAT spreads via fake GitHub tools using small Python or JavaScript loaders to fetch HTA files and install a modular ...
The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...

Malicious Firefox Extensions Hid Malware Inside Their Own Logos, Researchers Warn

Security researchers have uncovered a troubling new malware campaign that has been hiding malicious code inside the logo ...
Infosecurity Magazine

New BeaverTail Malware Variant Linked to Lazarus Group

A new variant of the BeaverTail malware linked to North Korean hackers has been identified targeting cryptocurrency traders ...

Darktrace researchers discover devilishly deadly new BeaverTail malware variant linked to Lazarus Group

Darktrace threat researchers have identified and analyzed a new variant of BeaverTail, a malware family associated with North Korea’s Lazarus Group activity. BeaverTail is a JavaScript-based ...

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence mechanisms and leverages Ethereum smart contracts for communication with the ...

Bondi shooters prepared attack for months, including firearms training, police say

One of the alleged gunmen, 50-year-old Sajid Akram, was shot dead by police during the incident, while his son Naveed Akram, ...

Firefox browser add-ons found to be riddled with malware

More than a dozen Firefox extensions were found to be malicious, planting backdoors and keeping track of user browsing habits ...
bitnewsbot

New JS#SMUGGLER Campaign Distributes NetSupport RAT Malware

Cybersecurity researchers have identified a new malware campaign called JS#SMUGGLER that spreads the remote access trojan NetSupport RAT via compromised websites. The campaign uses several steps: ...
Security Boulevard

Russian-Backed Threat Group Uses SocGholish to Target U.S. Company

A Russian state-backed threat group behind the RomCom malware used the SocGholish loader to deliver a RomCom payload – the Mythic agent – against a civil engineering firm based in the United States.