CISA warns of trojanized versions of JavaScript library’s NPM package

The warning comes days after three rogue packages, okhsa, klow, and klown discovered by DevSecOps firm Sonatype, were removed from the NPM repository. On Friday, the US Cybersecurity and Infrastructure…

Crypto-mining Malware Targets Huawei Cloud

Cloud service providers, like, for instance, Huawei Cloud, are now targeted by some new variant of a past crypto-mining malware. This is Linux-based and its initial version started its activities…

Fake Cryptomining Apps Stole Over $350K From Android Users

Security Intelligence – Security Intelligence – Fake Cryptomining Apps Stole Over $350K From Android Users Cryptomining has become a lucrative industry, growing more and more mainstream. Now, attackers are trying…

Crackonosh: A New Malware Distributed in Cracked Software

Avast –  Avast –  We recently became aware of customer reports advising that Avast antivirus was missing from their systems – like the following example from Reddit. From Reddit We…

DirtyMoe: Introduction and General Overview of Modularized Malware

Avast –  Avast –  The rising price of the cryptocurrency has caused a skyrocketing trend of malware samples in the wild. DDoS attacks go hand in hand with the mining…