#News

The U.S. is seeking the extradition of a Ukrainian man, Yaroslav Vasinskyi, whom they suspect is behind the Kaseya supply-chain attacks and other REvil attacks.

Q3 DDoS attacks topped thousands daily, with more growth expected.

Researchers have uncovered a large, tangled web of infrastructure being used to enable a wide variety of cyberattacks.

Researchers have spotted a second, worldwide campaign exploiting the Zoho zero-day: one that’s breached defense, energy and healthcare organizations.

The former DarkSide cybercriminal group will shut down due to increased pressure from authorities, who may have nabbed a key team member.

Anti-dumping code kept investors from selling SQUID while fraudsters cashed out.

Researchers found that one critical flaw in question is exploitable from the browser, allowing watering-hole attacks.

The incident triggered shutdowns at pumps across the country as attackers flashed the phone number of Supreme Leader Ali Khamenei across video screens.

By Deeba Ahmed The warning comes days after three rogue packages, okhsa, klow, and klown discovered by DevSecOps firm Sonatype, were removed from the NPM repository. This is a post from HackRead.com Read the original post: CISA warns of trojanized versions of JavaScript library’s NPM package

If AvosLocker stole Gigabyte's master keys, threat actors could force hardware to download fake drivers or BIOS updates in a supply-chain attack a la SolarWinds.