PyPI Repository Warns Python Project Maintainers About Ongoing Phishing Attacks

The Hacker News Daily Updates The Threat Landscape HEATs Up with Highly Evasive Adaptive Threats The Evolution of the Threat Landscape Continues Download Now Sponsored LATEST NEWS Aug 25, 2022 Microsoft Uncovers New Post-Compromise Malware Used by Nobelium Hackers The threat actor behind the SolarWinds supply chain attack has been linked to yet another "highly targeted" post-exploitation malware that could be used to maintain persistent access to compromised environments. Dubbed MagicWeb by Microsoft's threat intelligence teams, the development reiterates ... Read More U.S. Government Spending Billions on Cybersecurity In recent months, the House of Representatives has been hard at work drafting various spending bills for the 2023 fiscal year. While these bills provide funding for a vast array of government programs and agencies, there was one thing that really stands out. Collectively, the bills that are making ... Read More Researchers Uncover Kimusky Infra Targeting South Korean Politicians and Diplomats The North Korean nation-state group Kimusky has been linked to a new set of malicious activities directed against political and diplomatic entities located in its southern counterpart in early 2022. Russian cybersecurity firm Kaspersky codenamed the cluster GoldDragon, with the infection chains ... Read More PyPI Repository Warns Python Project Maintainers About Ongoing Phishing Attacks The Python Package Index, PyPI, on Wednesday sounded the alarm about an ongoing phishing campaign that aims to steal developer credentials and inject malicious updates to legitimate packages. "This is the first known phishing attack against PyPI," the maintainers of the official third-party ... Read More Crypto Miners Using Tox P2P Messenger as Command and Control Server Threat actors have begun to use the Tox peer-to-peer instant messaging service as a command-and-control method, marking a shift from its earlier role as a contact method for ransomware negotiations. The findings from Uptycs, which analyzed an Executable and Linkable Format (ELF) artifact ... Read More Two-Factor Authentication is Broken. Let's Fix It. SMS one-time passcodes are putting your customers at risk--biometric authentication is the answer. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India