[HackerNews] North Korean Hackers Target Cybersecurity Researchers with Trojanized IDA Pro

Lazarus, the North Korea-affiliated state-sponsored group, is attempting to once again target security researchers with backdoors and remote access trojans using a trojanized pirated version of the popular IDA Pro reverse engineering software.
The findings were reported by ESET security researcher Anton Cherepanov last week in a series of tweets.
IDA Pro is an Interactive Disassembler that’s

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] Microsoft Patch Tuesday: 55 Vulnerabilities, 4 Critical, 3 Publicly Known

All posts, Security Week

Microsoft’s monthly security patch release for May 2021 includes cover for 55 documented vulnerabilities, some serious enough to expose Windows users to remote code execution attacks. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[HackerNews] Squirrel Engine Bug Could Let Attackers Hack Games and Cloud Services

All posts, HackerNews

Researchers have disclosed an out-of-bounds read vulnerability in the Squirrel programming language that can be abused by attackers to break out of the sandbox restrictions and execute arbitrary code within a SquirrelVM, thus giving a malicious actor complete access to the underlying machine.  Tracked as CVE-2021-41556, the issue occurs when a game library referred to […]

Read More

[SecurityWeek] Microsoft, Intel and Goldman Sachs Lead New Supply Chain Security Group at TCG

All posts, Security Week

Microsoft, Intel and Goldman Sachs will lead a new work group focusing on supply chain security at the Trusted Computing Group (TCG). TCG is a non-profit organization that develops, defines and promotes open and vendor-neutral industry specifications and standards for trusted computing platforms, including the widely used Trusted Platform Module (TPM). read more Source: Read […]

Read More