CSO Online

North Korean threat actors turn blockchains into malware delivery servers

EtherHiding’: Nation-state and cybercriminal groups are leveraging smart contracts as command-and-control servers for ...
The Hacker News

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality ...

North Korea Weaponizes Blockchain for Stealth Hacks, Poses as Job Recruiters

North Korean threat group Famous Chollima is using blockchain technology to hide malware payloads in smart contracts, which ...

TSMC: Unprecedented Growth Outlook For A Company Of This Scale

TSMC's impressive growth, higher margins, and bullish stock trend make it a compelling investment opportunity. Click for my ...
The Hacker News

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with ...

Bun 1.3 stuffs everything and kitchen sink into JS runtime

Version 1.3 of the Bun JavaScript runtime and toolkit has landed, pushing forward the project's goal to consolidate ...
Bleeping Computer

New MatrixPDF toolkit turns PDFs into phishing and malware lures

A new phishing and malware distribution toolkit called MatrixPDF allows attackers to convert ordinary PDF files into interactive lures that bypass email security and redirect victims to credential ...

Why CERT-In is warning startups and IT firms about ‘Shai-Hulud,’ a Dune-inspired malware

India’s cybersecurity agency warns of a fast-spreading npm supply chain worm, urging startups and ITes firms to secure credentials and audit dependencies.
BBC

The criminal trade in ancient objects

Many of us like to visit museums to see ancient artefacts in person – it's an exciting way to learn about the history and culture of different civilisations. But did you know that there are criminal ...