Several updates have been introduced to the Atomic Stealer macOS information-stealing malware, also known as AMOS, including the integration of payload encryption to better evade security software detection, The Hacker News reports.
BleepingComputer reports that more than 6,700 WordPress sites leveraging Popup Builder plugin vulnerable to the cross-site scripting bug, tracked as CVE-2023-6000, have been compromised in a new Balada Injector campaign that commenced last month.
SecurityWeek reports that more details regarding the Stuxnet malware, which is thought to be co-developed by the U.S. and Israel in 2010 to target Iran's nuclear infrastructure-related industrial control systems, have emerged following a two-year probe by De Volkskrant, a Dutch newspaper.
Apache's open-source software utility collection Hadoop and open-source, unified stream-processing, and batch-processing framework Flink are being targeted in new malware attacks that involve packers and rootkits to evade detection, SiliconAngle reports.
Attacks with the new Mirai-based botnet dubbed "NoaBot" have been targeted at Linux-based Internet of Things devices to enable the deployment of an updated variant of the XMRig cryptocurrency mining malware since January 2023, according to Ars Technica.
Numerous phishing attacks have been launched by the Water Curupira operation to deploy the PikaBot loader malware as part of campaigns that initially ran from early to mid-2023 before reemerging in September, The Hacker News reports.
Hacked YouTube channels leveraged for Lumma Stealer distribution Several YouTube channels have been compromised to enable the distribution of the Lumma Stealer information-stealing malware via videos purporting to share cracked versions of legitimate software, reports Hackread.