Search cyberveille.decio.ch

Found 6 bookmarks

Custom sorting

Python Crypto Library Updated to Steal Private Keys

Yesterday, Phylum's automated risk detection platform discovered that the PyPI package aiocpa was updated to include malicious code that steals private keys by exfiltrating them through Telegram when users initialize the crypto library. While the attacker published this malicious update to PyPI, they deliberately kept the package's GitHub repository clean

#phylum #EN #2024 #Python #Crypto #Library #PyPI #malicious #code #aiocpa #Supply-chain-attack

·blog.phylum.io·Nov 29, 2024

Python Crypto Library Updated to Steal Private Keys

Decade-old Linux ‘wall’ bug helps make fake SUDO prompts, steal passwords

A vulnerability has been discovered in the 'util-linux' library that could allow unprivileged users to put arbitrary text on other users' terminals using the 'wall' command.

#bleepingcomputer #EN #2024 #Clipboard-Hijacker #Library #Linux #Passwords #Terminal #WallEscape

·bleepingcomputer.com·Mar 28, 2024

Decade-old Linux ‘wall’ bug helps make fake SUDO prompts, steal passwords

Qualys TRU Discovers Important Vulnerabilities in GNU C Library’s syslog()

The Qualys Threat Research Unit (TRU) has recently unearthed four significant vulnerabilities in the GNU C Library, a cornerstone for countless applications in the Linux environment. Before diving into the specific details of the vulnerabilities discovered by the Qualys Threat Research Unit in the GNU C Library, it’s crucial to understand these findings’ broader impact and importance. The GNU C Library, or glibc, is an essential component of virtually every Linux-based system, serving as the core interface between applications and the Linux kernel. The recent discovery of these vulnerabilities is not just a technical concern but a matter of widespread security implications.

#qualys #EN #2024 #report #research #GNU #C #Library #syslog #CVE-2023-6246 #CVE-2023-6779 #CVE-2023-6780

·blog.qualys.com·Jan 31, 2024

Qualys TRU Discovers Important Vulnerabilities in GNU C Library’s syslog()

The Disturbing Impact of the Cyberattack at the British Library

The library has been incapacitated since October, and the effects have spread beyond researchers and book lovers.

#newyorker #EN #2023 #British #Library #uk #impact

·newyorker.com·Dec 26, 2023

The Disturbing Impact of the Cyberattack at the British Library

Ledger's Web3 Connector library was compromised and replaced with a drainer

Ledger's software got hit with a serious security problem. banteg, a well-known crypto guy, tweeted that Ledger's library is messed up and now has a "drainer" in it.

#stackdiary #EN #2023 #Ledger #library #crypto #software #wallet

·stackdiary.com·Dec 14, 2023

Ledger's Web3 Connector library was compromised and replaced with a drainer

Rhysida ransomware gang claims attack on British Library • The Register

The Rhysida ransomware group says it's behind the highly disruptive October cyberattack on the British Library, leaking a snippet of stolen data in the process. A low-res image shared to its leak site appears to show a handful of passport scans, along with other documents, some of which display the format of HMRC employment documents.

#theregister #EN #2023 #Rhysida #ransomware #British #Library #Data-theft

·theregister.com·Nov 21, 2023

Rhysida ransomware gang claims attack on British Library • The Register