#blockchain-c2

[ follow ]
#supply-chain-attack #malicious-extensions #openvsx #glassworm #vs-code-extensions #unicode-obfuscation
Information security
fromTechzine Global
4 hours ago

Glassworm malware reappears within VS Code ecosystem

Glassworm malicious extensions persistently infiltrate developer marketplaces, conceal payloads, and use resilient, distributed command-and-control mechanisms that are difficult to detect or block.
Information security
fromThe Hacker News
3 weeks ago

GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs

GlassWorm uses malicious VS Code extensions and invisible Unicode obfuscation to steal credentials, drain cryptocurrency wallets, self-replicate across extensions, and use blockchain-based C2 for resilient updates.
fromThe Hacker News
1 month ago

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality of two of its malware programs, indicating that the hacking group is actively refining its toolset. That's according to new findings from Cisco Talos, which said recent campaigns undertaken by the hacking group have seen the functions of BeaverTail and OtterCookie coming closer to each other more than ever, even as the latter has been fitted with a new module for keylogging and taking screenshots.
Information security
[ Load more ]