githubMalicious code on GitHub: How hackers target programmers
We discovered over 200 repositories with fake projects on GitHub. Using them, attackers distribute stealers, clippers, and backdoors.
GReAT
Global Research & Analysis Team, Kaspersky
5 articles
minersXMRig miner as a New Year’s gift
Just a few hours before 2025, we recorded a surge in cryptominer distribution through video games. Interestingly, not only home PCs but also corporate machines were affected.
AndroidBeware of stealers disguised as… wedding invitations
Attackers are pumping out fake wedding invitations containing malicious APKs to Android users. To find out how to guard against this new threat, read on.
JarkaStealer in PyPI repository
Malicious packages for AI integration containing infostealer malware were found in the Python Package Index repository.
multilayeredUse of allowlists is not enough
Security should be multilayered, and use of allowlists is appropriate as one of the security levels.