Tag: Python Backdoor

Bogus npm Packages Used to Trick Software Developers into Installing Malware
News

Bogus npm Packages Used to Trick Software Developers into Installing Malware

Software developers are the subject of a persistent social engineering campaign that poses as a job interview and uses fake npm packages to lure people into downloading a Python backdoor. Under the handle DEV#POPPER, cybersecurity company Securonix is monitoring the activity and connecting it to North Korean threat actors. According to security experts Den Iuzvyk, Tim Peck, and Oleg Kolesnikov, during these fake interviews, engineers are frequently required to carry out activities that entail downloading and running software from sources that seem trustworthy, like GitHub. Once the malicious Node JS payload in the app was executed, the developer's system was compromised read more Bogus npm Packages Used to Trick Software Developers into Installing Malware. Get up to date on the l...
Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack
News

Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack

The recently discovered zero-day vulnerability in Palo Alto Networks PAN-OS software has been used by threat actors since March 26, 2024, or over three weeks prior to its discovery yesterday. Under the moniker Operation MidnightEclipse, the network security company's Unit 42 division is monitoring the activity and crediting it to the efforts of a lone threat actor with an unidentified origin. This command injection vulnerability, listed as CVE-2024-3400 (CVSS score: 10.0), allows unauthenticated attackers to run arbitrary code on the firewall with root privileges. It is important to note that this problem only affects firewall installations running PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 with GlobalProtect gateway and device telemetry enabled read more Hackers Deploy Python Bac...