Dark Reading

Malicious Python Trojan Impersonates SentinelOne Security Client

In the latest supply chain attack, an unknown threat actor has created a malicious Python package that appears to be a software development kit (SDK) for a well-known security client from SentinelOne.
ZDNet

New Python-scripted trojan malware targets fintech companies

A well-resourced hacking operation has deployed newly developed trojan malware in a campaign targeting financial tech organisations with the aim of stealing email addresses, passwords and other ...
Threat Post

New Windows Trojan Steals Browser Credentials, Outlook Files

The newly discovered Python-based malware family targets the Outlook processes, and browser credentials, of Microsoft Windows victims. Researchers have discovered a new information-stealing trojan, ...
Threat Post

Python-based Spy RAT Emerges to Target FinTech

The Evilnum APT has added the RAT to its arsenal as part of a big change-up in its TTPs. The Evilnum group, which specializes in targeting financial technology companies, has debuted a new tool: A ...
The Hacker News

WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging

Astaroth banking malware is spreading in Brazil through WhatsApp messages, using ZIP files to steal contacts and banking ...
Dark Reading

Japan Blames North Korea for PyPI Supply Chain Cyberattack

Japanese cybersecurity officials warned that North Korea's infamous Lazarus Group hacking team recently waged a supply chain attack targeting the PyPI software repository for Python apps. Threat ...