[HackerNews] Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices

Three JavaScript libraries uploaded to the official NPM package repository have been unmasked as crypto-mining malware, once again demonstrating how open-source software package repositories are becoming a lucrative target for executing an array of attacks on Windows, macOS, and Linux systems.
The malicious packages in question — named okhsa, klow, and klown — were published by the same

Source: Read More (The Hacker News)

You might be interested in …

[ESET] Bandidos at large: A spying campaign in Latin America

All posts, ESET feed

ESET Research uncovers an active malicious campaign that uses new versions of old malware, Bandook, to spy on its victims The post Bandidos at large: A spying campaign in Latin America appeared first on WeLiveSecurity Source: Read More (WeLiveSecurity)

Read More

[SANS ISC] Quicktip: TShark’s Options -e and -T, (Sun, Dec 26th)

All posts, Sans-ISC

When you use TShark’s option -e to display a field value, you need to include option -Tfields. You don’t actually have to memorize this, TShark will help you when you use option -e without option -T: And by doing so, you learn about other output formats, like JSON:   Didier Stevens Senior handler Microsoft MVP […]

Read More

[ZDNet] Chromebook data sanitization comes to Blancco Drive Eraser

All posts, ZDNet

This helps enterprises meet sustainability goals and regulatory compliance mandates. Source: Read More (Latest topics for ZDNet in Security)

Read More