Malware attacks on Docker Hub spread millions of malicious repositories

Malware attacks on Docker Hub spread millions of malicious repositories

Cybersecurity researchers from JFrog recently discovered three malicious campaigns in Docker Hub – Docker’s cloud-based registry service for storing and sharing container images. These campaigns contained millions of repositories that pushed generic trojan malware to the developers.  The conclusion of JFrog’s findings is that with open-source repositories such as Docker Hub, keeping them clean of … Read more

Malicious Google Ads found promoting a fake IP scanner that just wants to steal your data

Malicious Google Ads found promoting a fake IP scanner that just wants to steal your data

Security researchers have spotted another malicious advertising campaign in Google Ads that sees hackers impersonating multiple legitimate software companies.  While definitely not the first of its kind, this campaign was said to be unique for distributing a sophisticated Windows backdoor. The campaign was first spotted by cybersecurity researchers from Zscaler Threat labs, who noted between … Read more

Chrome to offer constant, real-time protection against malicious sites 24/7

Chrome to offer constant, real-time protection against malicious sites 24/7

Google is upgrading Chrome’s Safe Browsing security tool by allowing it to provide constant protection against suspicious websites in real-time. Before going into the update itself, it’s worth covering the backstory. Safe Browsing gives the Chrome browser a list of thousands of well-known, unsafe websites on the internet. Whenever you visit a webpage, the software … Read more

Watch out — these malicious PyPl packages could drain your wallet, and they’ve already been downloaded thousands of times

Watch out — these malicious PyPl packages could drain your wallet, and they’ve already been downloaded thousands of times

Be careful when downloading Python packages from PyPI – researchers have found some are malicious and looking to steal your cryptocurrency haul.  Cybersecurity researchers from ReversingLabs recently discovered seven such packages, whose goal is to steal BIP39 mnemonic phrases from its victims.  A cryptocurrency wallet is secured in two ways: with a password, and with … Read more