GitHub comments abused to push password stealing malware masked as fixes

Published on August 31, 2024

GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. [...]

Continue reading on website
Other news

Docker-OSX image used for security research hit by Apple DMCA takedown

August 31, 2024
The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright. [...]

North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

August 31, 2024
A recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign designed to deliver the FudModule rootkit.The development is indicative of the persistent efforts made by the nation-state adversary, which had made a habit of incorporating rafts of Windows zero-day exploits into its arsenal in recent months.