Hacks/Cracks

Discover Hacks/Cracks News

GhostSec’s Claimed ICS Ransomware Attack Questioned

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

SecurityWeek reports that pro-Ukraine hacktivist group GhostSec is having its claims of launching the first-ever ransomware attack against an industrial control system device questioned by cybersecurity experts.

LinuxSecurity.com Team
Jan 18, 2023

Python Package Index Found Stuffed with AWS Keys and Malware

The Python Package Index, or PyPI, continues to surprise and not in a good way. Ideally a source of Python libraries that developers can include in their projects to save time, PyPI has again been caught hosting packages with live Amazon Web Services (AWS) keys and data-stealing malware.

LinuxSecurity.com Team
Jan 16, 2023

Security Researchers Report Linux Malware with Cryptocurrency Miner Payload

South Korean cybersecurity firm AhnLab Security Emergency Response Center said it has observed a new Linux malware in the wild that deploys a cryptocurrency miner on infiltrated systems using a shell script compiler downloader, reports The Hacker News. According to the report, a successful breach will be followed by execution of the shc downloader malware to fetch the XMRig cryptocurrency miner software and a Perl-based DDoS IRC Bot that allows the attacker to connect through a remote server and proceed to mount distributed denial-of-service attacks.

LinuxSecurity.com Team
Jan 15, 2023

PyTorch Poisoned in Software Supply Chain Attack

If you downloaded PyTorch-nightly on Linux via pip between Dec. 25, 2022, and Dec. 30, 2022, you've got trouble.

LinuxSecurity.com Team
Jan 15, 2023

This New Linux Malware Floods Machines with Cryptominers and DDoS Bots

Cybersecurity researchers have spotted a new Linux malware downloader that targets poorly defended Linux servers with cryptocurrency miners and DDoS IRC bots.

LinuxSecurity.com Team
Jan 09, 2023

PyTorch Suffers Supply Chain Attack via Dependency Confusion

Users who deployed the nightly builds of PyTorch between Christmas and New Year's Eve likely received a rogue package as part of the installation that siphoned off sensitive data from their systems. The incident was the result of an attack called dependency confusion that continues to impact package managers and development environments if hardening steps are not taken.

LinuxSecurity.com Team
Jan 05, 2023

New shc-based Linux Malware Targeting Systems with Cryptocurrency Miner

A new Linux malware developed using the shell script compiler has been observed deploying a cryptocurrency miner on compromised systems.

LinuxSecurity.com Team
Jan 05, 2023

PyTorch: Machine Learning toolkit pwned from Christmas to New Year

PyTorch is one of the most popular and widely-used machine learning toolkits out there. Originally developed and released as an open-source project by Facebook, now Meta, the software was handed over to the Linux Foundation in late 2022, which now runs it under the aegis of the PyTorch Foundation.

LinuxSecurity.com Team
Jan 02, 2023

New Linux Malware Uses 30 Plugin Exploits to Backdoor WordPress Sites

A previously unknown Linux malware has been exploiting 30 vulnerabilities in multiple outdated WordPress plugins and themes to inject malicious JavaScript.

LinuxSecurity.com Team
Jan 02, 2023

Researchers Smell a Cryptomining Chaos RAT Targeting Linux Systems

A type of cryptomining malware targeting Linux-based systems has added capabilities by incorporating an open source remote access trojan called Chaos RAT with several advanced functions that bad guys can use to control remote operating systems.

LinuxSecurity.com Team
Dec 14, 2022

New Zerobot Malware Has 21 Exploits for BIG-IP, Zyxel, D-Link Devices

A new Go-based malware named ‘Zerobot’ has been spotted in mid-November using exploits for almost two dozen vulnerabilities in a variety of devices that include F5 BIG-IP, Zyxel firewalls, Totolink and D-Link routers, and Hikvision cameras.

LinuxSecurity.com Team
Dec 11, 2022

Hackers Hijack Linux Devices Using PRoot Isolated Filesystems

Hackers are abusing the open-source Linux PRoot utility in BYOF (Bring Your Own Filesystem) attacks to provide a consistent repository of malicious tools that work on many Linux distributions.

LinuxSecurity.com Team
Dec 05, 2022

New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks

A newly discovered evasive malware leverages the Secure Shell (SSH) cryptographic protocol to gain entry into targeted systems with the goal of mining cryptocurrency and carrying out distributed denial-of-service (DDoS) attacks.

LinuxSecurity.com Team
Nov 27, 2022

RansomExx Upgrades to Rust

IBM Security X-Force Threat Researchers have discovered a new variant of the RansomExx ransomware that has been rewritten in the Rust programming language, joining agrowing trend of ransomware developers switching to the language.

LinuxSecurity.com Team
Nov 27, 2022

Dropbox Confirms Serious Security Breach in which Hackers Stole code from 130 GitHub Repositories

Dropbox has revealed details of a phishing attack to which it fell victim. In the attack, a threat actor was able to steal code from the company after gathering employee credentials to GitHub repositories.

LinuxSecurity.com Team
Nov 02, 2022

Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware

A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines.

LinuxSecurity.com Team
Oct 24, 2022

20.Lock AbstractDigital Circular Esm H200

OldGremlin Hackers Use Linux Ransomware to Attack Russian Orgs

OldGremlin, one of the few ransomware groups attacking Russian corporate networks, has expanded its toolkit with file-encrypting malware for Linux machines.

LinuxSecurity.com Team
Oct 24, 2022

Intel Alder Lake BIOS code leak may contain vital secrets

Source code for the BIOS used with Intel's 12th-gen Core processors has been leaked online, possibly including details of undocumented model-specific registers (MSRs) and even the private signing key for Intel's Boot Guard security technology.

LinuxSecurity.com Team
Oct 14, 2022

New Alchimist Attack Framework Targets Windows, macOS, Linux

Cybersecurity researchers have discovered a new attack and C2 framework called 'Alchimist,' which appears to be actively used in attacks targeting Windows, Linux, and macOS systems.

LinuxSecurity.com Team
Oct 14, 2022

New DDoS Malware ‘Chaos’ Hits Linux and Windows Devices

Researchers at Black Lotus Labs, security firm Lumen Technologies’ research unit, have identified a novel cross-platform malware. Dubbed Chaos by researchers, this malware has infected numerous Windows and Linux devices, including enterprise servers, FreeBSD boxes, and small office routers.

LinuxSecurity.com Team
Oct 09, 2022

Akira Ransomware Gang Targets Linux Servers, Extorts $42 Million

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns