241 npm and PyPI packages caught dropping Linux cryptominers
More than 200 malicious packages were discovered infiltrating the PyPI and npm open source registries this week. These packages are…
Android malware apps with 2 million installs found on Google Play
A new batch of thirty-five Android malware apps that display unwanted advertisements was found on the Google Play Store, with…
China’s APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload
The state-sponsored threat actor has switched up its tactics, also adding an automated SQL-injection tool to its bag of tricks…
Malicious PyPi packages turn Discord into password-stealing malware
A dozen malicious PyPi packages have been discovered installing malware that modifies the Discord client to become an information-sealing backdoor…
New York Times drops repeat contributor who called for the genocide of Jews
In response to pressure by media watchdog Honest Reporting, the New York Times ended its relationship with repeat contributor Fady…
Pro-choicers call for the media to ‘stop giving air-time to anti-abortion activists’
Pro-choice proponents are calling upon the media stop covering pro-life activists when reporting on the issue of abortion.Physicians for Reproductive…
Malicious PyPi packages aim DDoS attacks at Counter-Strike servers
A dozen malicious Python packages were uploaded to the PyPi repository this weekend in a typosquatting attack that performs DDoS…
Lisa Kudrow says she avoids talking politics, believes ‘Friends’ had ‘no business’ telling stories about ‘experiences of being a person of color’
Actress Lisa Kudrow has a much different opinion regarding the alleged controversy of a lack of diversity on "Friends" than…
Novel Ransomware Comes to the Sophisticated SOVA Android Banking Trojan
Unusually, SOVA, which targets US users, now allows lateral movement for deeper data access. Version 5 adds an encryption capability.
Zimbra auth bypass bug exploited to breach over 1,000 servers
An authentication bypass Zimbra security vulnerability is being exploited to compromise Zimbra Collaboration Suite (ZCS) email servers worldwide. [...]