Moonstone Sleet North Korean Actor Deploying Malicious Open Source Packages
Despite efforts to expose supply chain attacks through the open-source npm registry by North Korean actors like Jade Sleet, new malicious packages continued to...
Gh0st and Pantegan RAT Malware Bypass Scanners & Attack Networks
Pantegana RAT, an open-source cross-platform botnet written in Golang, targets Windows, Linux, and macOS that uses HTTPS for C2 communication, executes commands directly, handles...
Critical Flaw in Apple Ecosystems Let Attackers Gain Unauthorized Access
The @CertiKSkyfall team recently identified a critical vulnerability in the low-level implementation of NSXPC, a component affecting all Apple platforms.
Known as CVE-2024-27801, this vulnerability...
Hackers Weaponize Windows Shortcut Files to Attack Government Organizations
The Mustang Panda APT group, likely state-sponsored by China, launched a cyberespionage campaign targeting government organizations and NGOs in Vietnam. The attack used Windows...
Beware of Fake KMSPico Activators that Delivers Vidar Stealer Malware
An attack was discovered in May 2024 that used a fake KMSPico activator tool to deliver Vidar Stealer, involving a web search for KMSPico,...
