npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels  – The Hacker News

Posted on By [email protected] (The Hacker News)
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels  – The Hacker News
Attack Feeds

Cybersecurity researchers have identified several malicious packages across npm, Python, and Ruby ecosystems that leverage Discord as a command-and-control (C2) channel to transmit stolen data to actor-controlled webhooks. Webhooks on Discord are a way to post messages to channels in the platform without requiring a bot user or authentication, making them an attractive mechanism for … Read More “npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels  – The Hacker News” »

Researchers Expose TA585’s MonsterV2 Malware Capabilities and Attack Chain  – The Hacker News

Posted on By [email protected] (The Hacker News)
Researchers Expose TA585’s MonsterV2 Malware Capabilities and Attack Chain  – The Hacker News
Attack Feeds

Cybersecurity researchers have shed light on a previously undocumented threat actor called TA585 that has been observed delivering an off-the-shelf malware called MonsterV2 via phishing campaigns. The Proofpoint Threat Research Team described the threat activity cluster as sophisticated, leveraging web injections and filtering checks as part of its attack chains. “TA585 is notable because it  … Read More “Researchers Expose TA585’s MonsterV2 Malware Capabilities and Attack Chain  – The Hacker News” »

AttackFeed by Joe Wagner
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.