The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and data-stealing malware.

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
Cryptopolitan

dYdX targeted as malicious packages empty its user wallets

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...

North Korean GraphAlgo campaign uses fake job tests to spread malware scam

The post North Korean Graphalgo Campaign Uses Fake Job Tests to Spread Malware Scam appeared first on Android Headlines.
The Hacker News

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

The elusive Iranian threat group known as Infy (aka Prince of Persia) has evolved its tactics as part of efforts to hide its tracks, even as it readied new command-and-control (C2) infrastructure ...

Astrix Security Releases OpenClaw Scanner Amid Growing Concerns Over Autonomous AI Agents

Astrix Security, the leader in AI agent security, today announced the general availability of OpenClaw Scanner, a complementary tool that detects deployments of the open-source AI assistant OpenClaw ...