Germany’s Federal Office for Information Security (BSI) has found 30,000 Android devices infected with “BadBox” malware, that turns products into a proxy service, enables click fraud and launches cyberattacks using home internet. The malware, believed to originate from the device’s firmware, was discovered in gadgets including digital picture frames and media players using outdated Android systems. The BSI is currently “sinkholing” the malware, redirecting traffic from the infected devices to government servers.
Yearlong supply-chain attack targeting security pros steals 390K credentials
Cybersecurity firm Datadog has revealed that actor MUT-1244 used proof-of-concept exploits and phishing emails to install malware @0xengine/xmlrpc, stealing around 390,000 credentials from infected machines.
