shell - Shackle Media

Technology

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a…

Cyber Security

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

Jan 16, 2025 krebsonsecurity.com

Residents across the United States are being inundated with text messages purporting to come from toll road operators like E-ZPass,…

Cyber Security

China’s UNC5337 Exploits a Critical Ivanti RCE Bug, Again

Jan 10, 2025 darkreading.com

New year, same story. Despite Ivanti's commitment to secure-by-design principles, Chinese threat actors are exploiting its edge devices for the…

Cyber Security

Threat Actors Exploit a Critical Ivanti RCE Bug, Again

Jan 10, 2025 darkreading.com

New year, same story. Despite Ivanti's commitment to secure-by-design principles, threat actors — possibly the same ones as before —…

Technology

Treasury hackers also breached US foreign investments review office

Jan 10, 2025 bleepingcomputer.com

Chinese hackers, part of the state-backed Silk Typhoon threat group, have reportedly breached the Committee on Foreign Investment in the…

Technology

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens

Jan 8, 2025 bleepingcomputer.com

Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in…

Fox News Politics Republican

Hochul’s polluters pay bill could result in regressive costs for working families: economists

Dec 31, 2024 foxnews.com

Gov. Kathy Hochul signing a bill to charge oil and gas companies $75 billion for fossil fuel pollution could increase…

Technology

Hackers exploit Four-Faith router flaw to open reverse shells

Dec 30, 2024 bleepingcomputer.com

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells…

Technology

Malware botnets exploit outdated D-Link routers in recent attacks

Dec 29, 2024 bleepingcomputer.com

Two botnets tracked as 'Ficora' and 'Capsaicin' have recorded increased activity in targeting D-Link routers that have reached end of…

Technology

New ‘OtterCookie’ malware used to backdoor devs in fake job offers

Dec 26, 2024 bleepingcomputer.com

North Korean threat actors are using new malware called OtterCookie in the Contagious Interview campaign that is targeting software developers.…

Malicious PyPi package steals Discord auth tokens from devs

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

China’s UNC5337 Exploits a Critical Ivanti RCE Bug, Again

Threat Actors Exploit a Critical Ivanti RCE Bug, Again

Treasury hackers also breached US foreign investments review office

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens

Hochul’s polluters pay bill could result in regressive costs for working families: economists

Hackers exploit Four-Faith router flaw to open reverse shells

Malware botnets exploit outdated D-Link routers in recent attacks

New ‘OtterCookie’ malware used to backdoor devs in fake job offers

You missed

Biden lets his family off the hook for over a decade of potential crimes with last-minute pardon

‘Democrats created the Klan!’ Rappers Nelly, Soulja Boy refuse to apologize for performing at Trump inauguration

Ramaswamy done at DOGE, Ohio gubernatorial campaign launch expected early next week: sources

1 of 10 EOs on immigration Trump apparently has ready to go could be a real game-changer

Shackle Media