Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
WeLiveSecurity

FishMonger’s arsenal upgraded: SprySOCKS for Windows

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced ...
The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...

Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them

Chainguard will use AI to protect open-source code. Athena pools open-source users, developers, and maintainers. Others are ...
GitHub

Advent of Cyber 2022

Elf McSkidy managed to capture the logs generated by the web server. What is the name of this log file? Find the website's source code (repository) on github.com and open the file containing sensitive ...
GitHub

Windows User Activity Analysis

The suspect typed a suspicious path in the Windows Explorer, that points to a tmp directory in C drive. What is the full path? What is the name of the second sub-folder within the Documents folder of ...
IT Business Edge

QR Codes Offer Bad Guys Yet Another Opening for Malware

When my son graduated from college, he and the classmates in his IT-related major had t-shirts made for the traditional graduation event. These being IT kids, they wanted to do something a little ...