Cybersecurity researchers at CloudSEK have exposed an attack campaign targeting aspiring hackers. The operation involves a weaponized version of the XWorm Remote Access Trojan (RAT) builder, primarily distributed through GitHub and other online platforms. The malware, once installed, performs harmful activities including data exfiltration, remote command execution, and File encryption for ransomware operations. The campaign has compromised over 18,459 devices worldwide, particularly in Russia, the US, India, Ukraine, and Turkey.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
