Mini Shai-Hulud worm injects disk wiper into Microsoft Azure PyPI package

Supply chain attacks with a Dune sci-fi saga branding continue to spread across the open-source ecosystem, with a Microsoft ...
techtimes

Researchers Discover Key-Stealing SSH-Snake Malware—Goes Undetected, Spreads Infections to New Systems

A recent discovery by the Sysdig Threat Research Team (TRT) has unveiled a concerning development in the realm of cybersecurity: SSH-Snake. This open-source network mapping tool, described as a ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
SiliconANGLE

Astaroth banking malware returns with WhatsApp-based worm targeting Brazil

A new report out today from cybersecurity and data protection company Acronis International GmbH details an newly identified campaign linked to the long-running Astaroth banking malware that’s ...