Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
SecurityWeek

Over 100 GitHub Repositories Distributing BoryptGrab Stealer

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...
Bleeping Computer

Trust Wallet confirms extension hack led to $7 million crypto theft

Trust Wallet confirmed that a compromised Chrome extension update released on December 24 led to $7 million in stolen cryptocurrency after users reported their wallets drained. "So far, $7m affected ...
The Hacker News

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain ...
The Hacker News

ToddyCat’s New Hacking Tools Steal Outlook Emails and Microsoft 365 Access Tokens

The threat actor known as ToddyCat has been observed adopting new methods to obtain access to corporate email data belonging to target companies, including using a custom tool dubbed TCSectorCopy.
Cleveland.com

14-year-old hacker stole 400,000 students’ personal information from Chagrin Falls company, lawsuit says

CLEVELAND, Ohio— A 14-year-old boy hacked into a Chagrin Falls company’s database and stole hundreds of thousands of students’ personal information, a lawsuit says. The teen, from the Columbus suburb ...
GitHub

Marvel Rivals Cheat 隸‍♂️ C++ Aimbot, ESP, No Recoil & Speed Hack Tool

Unleash your full potential in Marvel Rivals with this advanced C++ cheat, crafted for clean performance and tactical domination. Whether you're grinding casuals or dominating PvP, this tool gives you ...