#supply-chain-malware

[ follow ]
#glassworm #vs-code-extensions #invisible-unicode-characters #solana-blockchain #contagious-interview
fromTechzine Global
1 week ago

Invisible malware spreads via VS Code extensions

A new cyber threat is affecting developers worldwide who work with Visual Studio Code. Researchers at Koi Security have discovered an attack they call GlassWorm. It is a worm that spreads itself via infected VS Code extensions. According to Koi Security, it is the first attack of its kind to use so-called invisible Unicode characters, which make malicious code literally invisible to developers and security tools.
Information security
Information security
fromThe Hacker News
1 month ago

North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers

North Korea-linked actors use multi-platform malware including AkdoorTea to target cryptocurrency and Web3 developers via fake recruiter job offers that install backdoors.
Information security
fromInfoWorld
1 month ago

QR codes become the vehicle for malware in new technique

A malicious npm package named fezbox hides obfuscated backdoor code inside embedded QR codes to steal credentials from browser cookies.
fromThe Hacker News
1 month ago

SilentSync RAT Delivered via Two Malicious PyPI Packages Targeting Python Developers

"SilentSync is capable of remote command execution, file exfiltration, and screen capturing," Zscaler ThreatLabz's Manisha Ramcharan Prajapati and Satyam Singh said. "SilentSync also extracts web browser data, including credentials, history, autofill data, and cookies from web browsers like Chrome, Brave, Edge, and Firefox." The packages, now no longer available for download from PyPI, are listed below. They were both uploaded by a user named "CondeTGAPIS."
Information security
[ Load more ]