2025-02-24 11:59:57 Pacfic
Lazarus Group Exploits LinkedIn for Cyber Attacks - 7d
The Lazarus Group, a North Korean cyber threat actor, is using LinkedIn to target organizations across various sectors. The group uses social engineering to establish contact, then moves communications to other platforms, and tricks victims into downloading malware. This includes posing as recruiters with fake job offers, which ultimately lead to malware infection. This activity highlights the risk of using LinkedIn for business purposes without proper security protocols and employee training and also indicates how social media can be used to target unsuspecting users and bypass common network security measures.
Aptos Integrates Chainlink for Enhanced Web3 - 12d
Aptos network has integrated Chainlink data oracles, allowing developers to access trusted off-chain data for building decentralized applications and enhance web3 development. The move improves scalability and security of Aptos-based applications by leveraging Chainlink’s tamper-proof and reliable data feeds. This integration aims to support the creation of secure and efficient applications.
Malicious Code Found in Solana's Popular web3.js npm Library - 15d
A supply chain attack compromised versions 1.95.6 and 1.95.7 of the @solana/web3.js npm library, a critical JavaScript tool used for Solana blockchain applications. Malicious code inserted into the library could steal private keys, potentially leading to cryptocurrency theft. The compromise affected numerous applications and individual wallets, highlighting the risks of software supply chain attacks in the cryptocurrency space. Developers are urged to upgrade or downgrade the library to avoid compromise.