Ambassador @ambassador

The New Oil<a href="https://mastodon.thenewoil.org/tags/Coyote" class="mention hashtag" rel="nofollow noopener" target="_blank">#Coyote</a> <a href="https://mastodon.thenewoil.org/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> abuses <a href="https://mastodon.thenewoil.org/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#Windows</a> accessibility framework for data theft<a href="https://www.bleepingcomputer.com/news/security/coyote-malware-abuses-windows-accessibility-framework-for-data-theft/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/coyote-malware-abuses-windows-accessibility-framework-for-data-theft/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

MalwareLab<a href="https://infosec.exchange/@BleepingComputer" class="u-url mention" rel="nofollow noopener" target="_blank">@BleepingComputer</a> you mention that “AquaSec identified Serbia-based IP addresses used in the attacks, Serbian phrases in the scripts, and Slovak language in the GitHub repository hosting the miners, but it could make no confident attribution.”In the original blog by AquaSec, they identified the GitHub account “vozstanica” as Slovak word for “train station”. But this is not true, in Slovak language, train station is either “vlaková stanica” or “železničná stanica”. It seems that “vozstation” is incorrectly detected as Slovak word by Google Translate. On the other hand, when I search for “vozstation”, there are few occurrences on websites in Serbian language. It also correlates with other AquaSec findings such as Serbian phrases in AI-generated code and Serbian IP used in the attack. In their article, the only clue for Slovak is the “vozstation” only, which is more Serbian than Slovak word. <a href="https://infosec.exchange/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/koske" class="mention hashtag" rel="nofollow noopener" target="_blank">#koske</a>

heise DeveloperBeliebtes JavaScript-Paket is: Malware durch Supply-Chain-AngriffNach einem Phishing-Angriff auf npm-Maintainer war das Paket is, das auf etwa 2,7 Millionen wöchentliche Downloads kommt, mit einem Malware-Loader infiziert.<a href="https://www.heise.de/news/Beliebtes-JavaScript-Paket-is-Malware-durch-Supply-Chain-Angriff-10499614.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/Beliebtes-JavaScript-Paket-is-Malware-durch-Supply-Chain-Angriff-10499614.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> <a href="https://social.heise.de/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#JavaScript</a> <a href="https://social.heise.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

Ham on WryPicture the U.S government as your computer.Now picture little Donnie as the unchecked malware that’s slowing your system, releasing your personal data to anyone who wants it and who is rendering your system useless.The more you know.<a href="https://mastodon.world/tags/politics" class="mention hashtag" rel="nofollow noopener" target="_blank">#politics</a> <a href="https://mastodon.world/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://mastodon.world/tags/trump" class="mention hashtag" rel="nofollow noopener" target="_blank">#trump</a> <a href="https://mastodon.world/tags/america" class="mention hashtag" rel="nofollow noopener" target="_blank">#america</a> <a href="https://mastodon.world/tags/littledonnie" class="mention hashtag" rel="nofollow noopener" target="_blank">#littledonnie</a> <a href="https://mastodon.world/tags/republicans" class="mention hashtag" rel="nofollow noopener" target="_blank">#republicans</a> <a href="https://mastodon.world/tags/government" class="mention hashtag" rel="nofollow noopener" target="_blank">#government</a> <a href="https://mastodon.world/tags/DOGE" class="mention hashtag" rel="nofollow noopener" target="_blank">#DOGE</a> <a href="https://mastodon.world/tags/MAGA" class="mention hashtag" rel="nofollow noopener" target="_blank">#MAGA</a> <a href="https://mastodon.world/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a> <a href="https://mastodon.world/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

ManiabelChrisAquaSec deckte jetzt eine üble Malware für Linux auf, wobei verseuchte Bilddateien den Angriffsvektor beinhalten: Koske verbreitet sich - aktuell - über präparierte Pandabärbilder, die ein Script in C mit der unangenehmen Payload mitbringen. Offensichtlich half ein LLM bei der Entwicklung der Malware. Schöne, neue KI-Welt.<a href="https://www.aquasec.com/blog/ai-generated-malware-in-panda-image-hides-persistent-linux-threat/" rel="nofollow noopener" translate="no" target="_blank">https://www.aquasec.com/blog/ai-generated-malware-in-panda-image-hides-persistent-linux-threat/</a><a href="https://mastodon.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://mastodon.de/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://mastodon.de/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://mastodon.de/tags/koske" class="mention hashtag" rel="nofollow noopener" target="_blank">#koske</a> <a href="https://mastodon.de/tags/ki" class="mention hashtag" rel="nofollow noopener" target="_blank">#ki</a> <a href="https://mastodon.de/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#ai</a>

PrivacyDigest<a href="https://mas.to/tags/Ukrainians" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ukrainians</a> arrest alleged admin of major crime forum <a href="https://mas.to/tags/XSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#XSS</a> <a href="https://mas.to/tags/Ukraine" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ukraine</a> <a href="https://mas.to/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a><a href="https://arstechnica.com/tech-policy/2025/07/ukrainians-arrest-alleged-admin-of-major-crime-forum-xss/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/tech-policy/2025/07/ukrainians-arrest-alleged-admin-of-major-crime-forum-xss/</a>

PrivacyDigestAdministrator of major dark web <a href="https://mas.to/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> forum arrested in <a href="https://mas.to/tags/Ukraine" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ukraine</a> EUROPEThe suspected administrator of major dark web cybercrime forum, XSS.is, was arrested in Ukraine, French prosecutors said on Wednesday. The Russian-language site is one of the main hubs for global cybercrime, enabling access to compromised systems, stolen data and the sale of <a href="https://mas.to/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>. <a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mas.to/tags/xssis" class="mention hashtag" rel="nofollow noopener" target="_blank">#xssis</a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://www.france24.com/en/europe/20250723-administrator-of-major-dark-web-cybercrime-forum-arrested-in-ukraine#" rel="nofollow noopener" translate="no" target="_blank">https://www.france24.com/en/europe/20250723-administrator-of-major-dark-web-cybercrime-forum-arrested-in-ukraine#</a>

Scripter :verified_flashing:Entwickler sollten handeln: Malware in prominente Javascript-Projekte eingeschleust - Golem.de <a href="https://www.golem.de/news/entwickler-sollten-handeln-malware-in-prominente-javascript-projekte-eingeschleust-2507-198445.html" rel="nofollow noopener" translate="no" target="_blank">https://www.golem.de/news/entwickler-sollten-handeln-malware-in-prominente-javascript-projekte-eingeschleust-2507-198445.html</a> <a href="https://social.tchncs.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybercrime</a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://social.tchncs.de/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#JavaScript</a>

Jon SnowMicrosoft silently installs Power Automate Chrome extension during Windows update—no prompt, no permission* Microsoft is modifying a competing browser’s behavior via the OS update mechanism. * The extension has sweeping permissions. * There's no meaningful consent process.<a href="https://www.reddit.com/r/privacy/comments/1m7lpnz/microsoft_silently_installs_power_automate_chrome/" rel="nofollow noopener" translate="no" target="_blank">https://www.reddit.com/r/privacy/comments/1m7lpnz/microsoft_silently_installs_power_automate_chrome/</a><a href="https://mastodon.online/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://mastodon.online/tags/windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows</a> <a href="https://mastodon.online/tags/windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows11</a> <a href="https://mastodon.online/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://mastodon.online/tags/surveillance" class="mention hashtag" rel="nofollow noopener" target="_blank">#surveillance</a> <a href="https://mastodon.online/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mastodon.online/tags/enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#enshittification</a> <a href="https://mastodon.online/tags/chrome" class="mention hashtag" rel="nofollow noopener" target="_blank">#chrome</a> <a href="https://mastodon.online/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#tech</a>

Kevin Karhan :verified:<a href="https://aus.social/@static" class="u-url mention" rel="nofollow noopener" target="_blank">@static</a> <a href="https://toot.community/@Noisecolor" class="u-url mention" rel="nofollow noopener" target="_blank">@Noisecolor</a> TBH, <a href="https://infosec.space/tags/npm" class="mention hashtag" rel="nofollow noopener" target="_blank">#npm</a> suffers the same problems and then some as <a href="https://infosec.space/tags/AUR" class="mention hashtag" rel="nofollow noopener" target="_blank">#AUR</a> and has seen it's fair share of <a href="https://infosec.space/tags/abuse" class="mention hashtag" rel="nofollow noopener" target="_blank">#abuse</a> and <a href="https://infosec.space/tags/CyberVandalism" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberVandalism</a> ranging from malicious commits to flat-out <a href="https://infosec.space/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> distribution, so it has the <a href="https://infosec.space/tags/centralization" class="mention hashtag" rel="nofollow noopener" target="_blank">#centralization</a> problem!

MediaFaro News DigestAn administrator of a major dark web cybercrime forum was arrested.The suspected administrator of XSS.is was arrested in Ukraine, French prosecutors said on Wednesday.The Russian-language site is one of the main hubs for global cybercrime, enabling access to compromised systems, stolen data and the sale of malware.<a href="https://mediafaro.org/article/20250723-an-administrator-of-a-major-dark-web-cybercrime-forum-was-arrested?mf_channel=mastodon&action=forward" rel="nofollow noopener" translate="no" target="_blank">https://mediafaro.org/article/20250723-an-administrator-of-a-major-dark-web-cybercrime-forum-was-arrested?mf_channel=mastodon&action=forward</a><a href="https://mastodon.mediafaro.org/tags/Ukraine" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ukraine</a> <a href="https://mastodon.mediafaro.org/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybercrime</a> <a href="https://mastodon.mediafaro.org/tags/Crime" class="mention hashtag" rel="nofollow noopener" target="_blank">#Crime</a> <a href="https://mastodon.mediafaro.org/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://mastodon.mediafaro.org/tags/DarkWeb" class="mention hashtag" rel="nofollow noopener" target="_blank">#DarkWeb</a> <a href="https://mastodon.mediafaro.org/tags/Tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tech</a> <a href="https://mastodon.mediafaro.org/tags/Policing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Policing</a> <a href="https://mastodon.mediafaro.org/tags/Europol" class="mention hashtag" rel="nofollow noopener" target="_blank">#Europol</a> <a href="https://mastodon.mediafaro.org/tags/France" class="mention hashtag" rel="nofollow noopener" target="_blank">#France</a>

AAKLCharming.Socket: Surveillance Malware Hidden in npm and PyPI Packages Targets Developers with Keyloggers, Webcam Capture, and Credential Theft <a href="https://socket.dev/blog/surveillance-malware-hidden-in-npm-and-pypi-packages" rel="nofollow noopener" translate="no" target="_blank">https://socket.dev/blog/surveillance-malware-hidden-in-npm-and-pypi-packages</a> <a href="https://fosstodon.org/@SocketSecurity" class="u-url mention" rel="nofollow noopener" target="_blank">@SocketSecurity</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

PrivacyDigest<a href="https://mas.to/tags/Hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacker</a> Plants Computer 'Wiping' Commands in Amazon's <a href="https://mas.to/tags/AICoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#AICoding</a> <a href="https://mas.to/tags/Agent" class="mention hashtag" rel="nofollow noopener" target="_blank">#Agent</a> “The ghost’s goal? Expose their ‘AI’ <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> theater. A wiper designed to be defective as a warning to see if they'd publicly own up to their bad security,” a person who presented themselves as the hacker responsible told 404 Media. <a href="https://mas.to/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#ai</a> <a href="https://mas.to/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a><a href="https://www.404media.co/hacker-plants-computer-wiping-commands-in-amazons-ai-coding-agent/" rel="nofollow noopener" translate="no" target="_blank">https://www.404media.co/hacker-plants-computer-wiping-commands-in-amazons-ai-coding-agent/</a>

The Spamhaus ProjectFollowing the return of “Operation Endgame 2.0” two malware families have dropped out of the Top 20 malware associated with botnet C&Cs! Find out which ones and read the FREE report here 🔎 <a href="https://www.spamhaus.org/resource-hub/botnet-c-c/botnet-threat-update-january-to-june-2025/" rel="nofollow noopener" translate="no" target="_blank">https://www.spamhaus.org/resource-hub/botnet-c-c/botnet-threat-update-january-to-june-2025/</a> <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://infosec.exchange/tags/BotnetCC" class="mention hashtag" rel="nofollow noopener" target="_blank">#BotnetCC</a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a>

Karl Voit :emacs: :orgmode:<a href="https://graz.social/tags/Gro%C3%9Fbritannien" class="mention hashtag" rel="nofollow noopener" target="_blank">#Großbritannien</a> plant Meldepflicht und Zahlungsverbote bei <a href="https://graz.social/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a>-Angriffen <a href="https://www.derstandard.at/story/3000000280596/grossbritannien-plant-meldepflicht-und-zahlungsverbote-bei-ransomware-angriffen" rel="nofollow noopener" translate="no" target="_blank">https://www.derstandard.at/story/3000000280596/grossbritannien-plant-meldepflicht-und-zahlungsverbote-bei-ransomware-angriffen</a>Sehr spannender Ansatz. Dem kann ich viel abgewinnen.<a href="https://graz.social/tags/Sicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sicherheit</a> <a href="https://graz.social/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a> <a href="https://graz.social/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#Windows</a> <a href="https://graz.social/tags/Outlook" class="mention hashtag" rel="nofollow noopener" target="_blank">#Outlook</a> <a href="https://graz.social/tags/Exchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#Exchange</a> <a href="https://graz.social/tags/Sharepoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sharepoint</a> <a href="https://graz.social/tags/Firmenspionage" class="mention hashtag" rel="nofollow noopener" target="_blank">#Firmenspionage</a> <a href="https://graz.social/tags/Sicherheitsprozesse" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sicherheitsprozesse</a>

Recent searches

Search options

Administered by:

Server stats:

#malware