Threat actors uploaded malicious Python packages to the PyPI repository and promoted them through the StackExchange online question and answer platform. The packages are named ‘spl-types,’ ‘raydium,’ ‘sol-structs,’ ‘sol-instruct,’ and ‘raydium-sdk’ and download scripts that steal sensitive data from the browser, messaging apps (Telegram, Signal, Session), and cryptocurrency wallet details (Exodus, Electrum, Monero). The info-stealing malware can also exfiltrate files…
Read More
Researchers are warning of threat actors increasingly abusing the Cloudflare Tunnel service in malware campaigns that usually deliver remote access trojans (RATs). This cybercriminal activity was frst detected in February and it is leveraging the TryCloudflare free service to distribute multiple RATs, including AsyncRAT, GuLoader, VenomRAT, Remcos RAT, and Xworm. Campaigns attributed to the same activity…
Read More
“The manufacturing, healthcare, and technology sectors were the top targets of ransomware attacks, while the energy sector experienced a 500% year-over-year spike as critical infrastructure and susceptibility to operational disruptions make it particularly attractive to cybercriminals,” the report said. “The energy sector experienced a 527.27% year-over-year increase in ransomware attacks, likely due to its critical…
Read More
The United Kingdom’s National Crime Agency (NCA) has shut down Russian Coms, a major caller ID spoofing platform used by hundreds of criminals to make over 1.8 million scam calls. Their targets included people from over 107 countries, including the United Kingdom, the United States, New Zealand, Norway, and France. Russian Coms was established in…
Read More
Schneider Electric Vice President of U.S. Channels Gordon Lord tells CRN that partners need to look at Schneider Electric as a “consultant and true business partner” that can support their AI and sustainability business. Schneider Electric Vice President of U.S. Channels Gordon Lord is urging partners to prepare for the coming on-premises edge computing AI…
Read More
Threat actors have hijacked more than 35,000 registered domains in so-called Sitting Ducks attacks that allow claiming a domain without having access to the owner’s account at the DNS provider or registrar. In a Sitting Ducks attack, cybercriminals exploit configuration shortcomings at the registrar level and insufficient ownership verification at DNS providers. Researchers at DNS-focused security vendor Infoblox…
Read More
Pharmaceutical giant Cencora has confirmed that patients’ protected health information and personally identifiable information (PII) was exposed in a February cyberattack. Cencora, previously known as AmerisourceBergen, specializes in pharmaceutical services, providing drug distribution and technology solutions for doctor’s offices, pharmacies, and animal healthcare. The company is ranked #10 on the Fortune 500 and #24 on the Global Fortune…
Read More
Matters related to the widely felt July 19 outage have begun shifting into the legal sphere this week. Matters related to the widely felt July 19 outage caused by a faulty CrowdStrike update have begun shifting into the legal sphere this week. And this is where things are likely to remain for some time, according…
Read More
‘We’re building towards curating and collecting a bunch of information to be able to provide back intelligence and insights on the industry,’ says Colin Knox, CEO of Gradient MSP. ‘Benchmarking was just the number one thing that kept coming back to us from everybody saying, ‘Can we get pricing and cost benchmarking so that we…
Read More
‘Based on its market investigation, the Commission found that the transaction, as notified, would not significantly reduce competition on such markets,’ the European Commission said. Citing “no competition concerns” in the European Economic Area, the European Commission Thursday unconditionally approved Hewlett Packard Enterprise’s $14 billion blockbuster acquisition of Juniper Networks “Based on its market investigation,…
Read More