Hackers are using the open-source Pyramid pentesting framework, launched in 2023, for stealthy command-and-control operations. Its lightweight Python-based HTTP/S server enables evasion of detection tools, executing well-known tools in memory. Security analysts suggest monitoring specific network signatures and response headers for detection, emphasizing the need for structured queries to enhance cybersecurity defenses against Pyramid-related activities.
Lazarus Group hiding malware in GitHub and open-source packages
North Korean hacking group, Lazarus Group, is using malware to steal cryptocurrency, according to SecurityScorecard’s STRIKE Team. The malware, named Marstech1, is planted in “undetectable”
