Esme brings a wealth of knowledge and experience to our website, specializing in all aspects of DarkWeb security. With a deep understanding of the intricate workings of the DarkWeb and its associated cybersecurity risks, Esme curates insightful and informative content for our readers.
Latest posts by Esme Greene (see all)
- “Ducktail” Hackers Target Facebook - September 28, 2023
- Okta Breach: Super Admin Hack - September 24, 2023
- Rackspace: $10.8M Cloud Shift - September 23, 2023
Recent cyberattacks on two banks resulted in a worrying development when open-source supply chain assaults attacked their systems, necessitating stronger defenses to protect client data and finances.
In separate assaults between February and April, attackers used packages containing malicious scripts to target the open-source software platform npm, according to Checkmarx findings.
In one such attack, the hacker used tainted software packages that had scripts made to detect the victim’s operating system (Windows, Linux, or macOS) and then decode additional encrypted files in accordance. Malware was covertly downloaded onto the target computer using the encrypted data.
Cyber Siege: LinkedIn Impersonation & Stealthy Banking Breach
Additionally, a cunning cybercriminal placed malicious code onto a login page for an online bank, stealing login information covertly.
Despite the fact that the infected shipments were finally found and eliminated, Checkmarx analysts nevertheless foresee a further rise in supply chain assaults directed against the banking industry.
Prior Checkmarx investigations also uncovered a hacking effort that used abandoned AWS S3 packages to introduce malicious code into npm packages.
In a second instance, the renowned hacker collective RedCurl, known for corporate espionage and data theft, attacked one of Russia’s biggest banks through two different cyberattacks: one through phishing emails impersonating a Russian marketplace and the other through a contractor.