Aggregator

New JanaWare Ransomware Targets Turkish Users Through Customized Adwind RAT

Cyber Security News
1 month 4 weeks ago

A new ransomware strain known as JanaWare has been quietly targeting home users and small to medium-sized businesses in Turkey, using a customized version of the well-known Adwind Remote Access Trojan (RAT) as its delivery vehicle. The campaign is notable for its focused geographic targeting, modest ransom demands, and the use of advanced evasion techniques […]

The post New JanaWare Ransomware Targets Turkish Users Through Customized Adwind RAT appeared first on Cyber Security News.

Tushar Subhra Dutta

Microsoft Teams Desktop Client Faces Launch Failures After Update Triggers Caching Regression

Cyber Security News
1 month 4 weeks ago

Microsoft is actively working to resolve a service disruption that has left a subset of Teams desktop client users unable to launch the application, with the company now monitoring the rollback of the problematic update to confirm full recovery. Microsoft acknowledged the ongoing outage under incident reference TM1283300, which has been affecting users attempting to […]

The post Microsoft Teams Desktop Client Faces Launch Failures After Update Triggers Caching Regression appeared first on Cyber Security News.

Guru Baran

CVE-2023-33538 under attack for a year, but exploitation still unsuccessful

Security Affairs
1 month 4 weeks ago
Hackers have targeted CVE-2023-33538 flaw in old TP-Link routers for a year, but no successful exploitation has been seen so far. Hackers have been trying for over a year to exploit a serious flaw, tracked as CVE-2023-33538 (CVSS score of 8.8), in outdated TP-Link routers, but so far without success. The vulnerability is a command […]
Pierluigi Paganini

⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More

The Hackers News
1 month 4 weeks ago
Monday’s recap shows the same pattern in different places. A third-party tool becomes a way in, then leads to internal access. A trusted download path is briefly swapped to deliver malware. Browser extensions act normally while pulling data and running code. Even update channels are used to push payloads. It’s not breaking systems—it’s bending trust. There’s also a shift in how attacks run.
The Hacker News

GitHub 上项目的伪造星数

Solidot
1 month 4 weeks ago
在最大的源代码托管平台 GitHub,一个项目的星数曾经是衡量其受欢迎程度的重要指标。因为重要,因此伪造星数或者付费刷星数也日益商业化。卡内基梅隆、北卡州立大学和 Socket 的研究人员在 ICSE 2026 上发表了一项研究,使用工具 StarScout 分析了 20TB GitHub 元数据,涵盖 2019 年到 2024 年 67 亿个事件和 3.26 亿星数,识别了 600 万被怀疑刷的虚假星数,涉及 30.1 万个账户创建的 18,617 个库。付费刷星数在 2024 年急剧恶化,到 7 月 16.66% 有 50 或以上星数的项目涉嫌刷星数。到了 2025 年 1 月,涉嫌刷星数的项目有 90.42% 被官方移除,涉嫌的账号有 57.07% 被关闭。AI 和 LLM(大模型)的项目超过区块链/加密货币,成为刷星数最多的非恶意项目类别。调查发现有几十家网站、以及 Fiverr 卖家和 Telegram 频道提供付费刷星数的服务,价格最低 0.03 美元/星,最高 0.8-0.9 美元/星。清华大学的一项研究发现 QQ 和微信推广群也提供了刷星数的付费服务。

Why the Axios attack proves AI is mandatory for supply chain security

CyberScoop
1 month 4 weeks ago

Two weeks ago, a suspected North Korean threat actor slipped malicious code into a package within Axios, a widely used JavaScript library. The immediate concern was the blast radius: roughly 100 million weekly downloads spanning enterprises, startups, and government systems. But beyond the sheer scale, the attack’s speed was just as worrisome – a stark […]

The post Why the Axios attack proves AI is mandatory for supply chain security appeared first on CyberScoop.

Greg Otto

New Windows 11 Dev Build Improves Secure Boot Monitoring and Storage Controls

Cyber Security News
1 month 4 weeks ago

Microsoft has released Windows 11 Insider Preview Build 26300.8170 to the Dev Channel, introducing notable improvements to Secure Boot visibility, storage management, and the Feedback Hub experience. The most security-relevant update in this build is a revamped Secure Boot experience within the Windows Security app. Navigating to Windows Security > Device Security > Secure Boot now displays […]

The post New Windows 11 Dev Build Improves Secure Boot Monitoring and Storage Controls appeared first on Cyber Security News.

Abinaya

Managed ad