The U.S. government has dismantled the Rydox criminal marketplace, and software firms including Cleo, Microsoft and Dell have urged users to patch critical vulnerabilities. A Japanese media company reportedly paid a $3m ransom to Russia-linked hackers. In addition, Bitcoin ATM operator Byte Federal confirmed a data breach, whilst 14 North Koreans were indicted over a scheme funding weapons programmes. Texas accused a data broker of breaching privacy laws by sharing driving data.
Malicious npm Package ‘dbmux’ Targets Developers
Malware was discovered in the npm package dbmux. Any computer with this package installed or running should be considered fully compromised. The GitHub Advisory (GHSA-62wx-5f55-w8g2)
