In The News

Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data The Hacker [email protected] (The Hacker News)
April 5, 2025

Cybersecurity researchers have uncovered malicious libraries in the Python Package Index (PyPI) repository that are designed to steal sensitive information. Two of the packages, bitcoinlibdbfix and bitcoinlib-dev, masquerade as fixes for …


Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe Krebs on SecurityBrianKrebs
April 4, 2025

A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry …


SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack The Hacker [email protected] (The Hacker News)
April 4, 2025

The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the "tj-actions/changed-files" GitHub Action has been traced further back to the theft …


Have We Reached a Distroless Tipping Point? The Hacker [email protected] (The Hacker News)
April 4, 2025

There’s a virtuous cycle in technology that pushes the boundaries of what’s being built and how it’s being used. A new technology development emerges and captures the world's attention. People …


Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware The Hacker [email protected] (The Hacker News)
April 3, 2025

Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure that has come under active exploitation in the wild. The vulnerability, tracked as CVE-2025-22457 (CVSS score: 9.0), …


OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers The Hacker [email protected] (The Hacker News)
April 3, 2025

A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from DomainTools, which detected the …


CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware The Hacker [email protected] (The Hacker News)
April 3, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure facilities in the country …


Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code The Hacker [email protected] (The Hacker News)
April 3, 2025

A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet …


Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware The Hacker [email protected] (The Hacker News)
April 3, 2025

Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. "These campaigns notably use redirection methods such as URL shorteners and QR codes …


Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware The Hacker [email protected] (The Hacker News)
April 3, 2025

The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented …