Cybersecurity analysts have discovered an updated version of the NodeStealer malware, which is now capable of extracting more data from victims’ Facebook Ads Manager accounts and harvesting credit card details stored in browsers. The Python-based malware is believed to be developed by Vietnamese threat actors focusing on hijacking Facebook advertising and business accounts to enable other malicious activities. The malware avoids infecting machines located in Vietnam, presumably to evade local law enforcement actions.
Spies hack Wi-Fi networks in far-off land to launch attack on target next door
GruesomeLarch, an advanced persistent threat group, compromised several account passwords on a web service platform using credential-stuffing attacks. However, two-factor authentication prevented actual account breaches.
