All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API

By

[email protected] (The Hacker News)

2d ago

Source

thehackernews.comToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google APIthehackernews.com
Snippet from the RSS feed
The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that's designed to gain surreptitious access to a victim's email correspondence via the Google API. "In this campaign, the attackers focused their attention on corporate email communications hosted on Gmail, targeting access compromise via APIs," Kaspersky said in a detailed report published this week. "

You might also wanna read

npm malware targeting Claude users leaks own GitHub token, reaches 676 downloads

An npm package called "mouse5212-super-formatter" targeting Claude users acted as information-stealing malware, reaching 676 downloads befor

theregister.com·1mo ago

Google disrupts NetNut residential proxy network used for malware operations

Google, in partnership with the FBI and Lumen, disrupted the NetNut residential proxy network (also known as Popa), which was being used to

channelnewsasia.com·2d ago

FBI and Google disrupt NetNut proxy botnet controlling 2 million infected devices

Google, the FBI, and industry partners disrupted NetNut (also known as Popa), a massive residential proxy botnet that controlled at least 2

hendryadrian.com·1d ago

Android Botnet 'Popa' Infects Millions of TV Boxes, Linked to Israeli Firm Alarum Technologies

For the past four years, an Android-based botnet called Popa has infected millions of consumer TV boxes to relay internet traffic for advert

krebsonsecurity.com·14d ago

Android Botnet 'Popa' Infects Millions of TV Boxes, Linked to Israeli Firm Alarum Technologies

For the past four years, an Android-based botnet called Popa has infected millions of consumer TV boxes to relay internet traffic for advert

krebsonsecurity.com·14d ago

Attacker publishes 14 malicious npm packages impersonating OpenSearch and Elasticsearch libraries

A single npm user published 14 malicious packages over four hours, impersonating popular OpenSearch, Elasticsearch, DevOps, and environment-

briefly.co·1mo ago

Post-mortem Analysis of @ctrl/tinycolor npm Supply Chain Attack via GitHub Actions

A detailed post-mortem analysis of a supply chain attack on the @ctrl/tinycolor npm package. The attack occurred when a malicious GitHub Act

sigh.dev·9mo ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.