News

The Hacker News

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

The SVG files, according to VirusTotal, are distributed via email and designed to execute an embedded JavaScript payload, ...

First npm worm "Shai-Hulud" released in supply chain attack

A new supply chain attack on npm, the node package manager, has injected the first malware with self-replicating worm ...
Infosecurity Magazine

Shai-Hulud Worm Prowls npm to Steal Hundreds of Secrets

The bundle.js script is designed to steal npm, GitHub, AWS and GCP tokens. But it also installs TruffleHog – an open source ...
Security Boulevard

APT37 Targets Windows with Rust Backdoor and Python Loader

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...
Security Boulevard

Self-Replicating Worm Compromising Hundreds of NPM Packages

Hulud" has compromised hundreds of packages in the npm repository with a self-replicating worm that steals secrets like API key, tokens, and cloud credentials and sends them to external servers that ...
The Register on MSN

AWS catches Russia's Cozy Bear clawing at Microsoft credentials

Look who's visiting the watering hole these days Amazon today said it disrupted an intel-gathering attempt by Russia's APT29 ...
WinBuzzer

VirusTotal’s AI Uncovers Year-Long Malware Campaign Hidden in SVG Files

VirusTotal has used its AI Code Insight tool to uncover a year-long malware campaign that hid within SVG files to evade antivirus software.
The Sunday Times

Facebook representatives in Sri Lanka tomorrow for talks

Representatives of Facebook are expected in the country tomorrow to hold discussions with government officials. Facebook is sending its representatives to the country following the temporary ban ...
The Sunday Times

Rosy Senanayake assumes duties as Colombo's first female Mayor

Rosy Senanayake assumed duties as Colombo's first female Mayor at the Colombo Municipal Council (CMC) premises a short while ago. Mrs Senanayake's United National Party (UNP) won 60 of the 119 seats ...
GitHub

Feature request: Base64-encoded string can be decoded and directly rendered as a PDF within the interface

Is your feature request related to a problem? Please describe. Currently, CyberChef allows decoding a Base64 string to a text output, but it does not provide a straightforward way to render or view ...
The Hacker News

Linux Malware Delivered via Malicious RAR Filenames Evades Antivirus Detection

Cybersecurity researchers have shed light on a novel attack chain that employs phishing emails to deliver an open-source backdoor called VShell. The "Linux-specific malware infection chain that starts ...
GitHub

Better Auth Utils

Hash Hash inputs using sha family hash functions. HMAC Hash inputs using HMAC with a secret key. Random String Generate random strings with a specified length and charset. RSA Perform encryption, ...