JS.MonoGlyphRAT Targets US Enterprises
10d ago
~Anyrun~
A new, highly obfuscated backdoor dubbed JS.MonoGlyphRAT is targeting US enterprises via fake purchase orders to establish persistent remote access.
-
IOCs: 158[. ]94[. ]211[. ]76, 91[. ]92[. ]243[. ]79, aryamint[. ]com
-
...
You might also wanna read
Glassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code
The Glassworm threat actor has returned with a new wave of supply chain attacks using invisible Unicode characters to compromise software re
aikido.dev·2mo agoSpoofing OpenPGP.js signature verification
codeanlabs.com·1y ago
Supply Chain Attacks on Open-Source Software: Case Study of Malicious Pull Request Attempts
The article discusses recent supply chain attacks on open-source software projects like LiteLLM and axios, with a specific case study of att
casco.com·2mo ago
Crates.io Targeted by Phishing Attempt Following npm Supply Chain Attack
The article discusses a phishing attempt targeting crates.io, the main public repository for Rust packages, following a recent npm supply ch
fasterthanli.me·9mo ago
Attackers use invisible Unicode characters to hide malicious code in GitHub repositories
Attackers are exploiting invisible Unicode characters (Private Use Areas) to hide malicious code in JavaScript files hosted on GitHub and ot
arstechnica.com·3mo ago
GlassWorm: First Self-Propagating Worm Targets VS Code Extensions with Invisible Code
Researchers have discovered GlassWorm, the world's first self-propagating worm targeting VS Code extensions on the OpenVSX marketplace. This
koi.ai·7mo ago