The operators of Raspberry Robin are now using two new one-day exploits to achieve local privilege escalation, even as the malware continues to be refined and improved to make it stealthier than before. This means that “Raspberry Robin has access to an exploit seller or its authors develop the exploits themselves in a short period […]
Cybersecurity researchers have discovered a new Java-based “sophisticated” information stealer that uses a Discord bot to exfiltrate sensitive data from compromised hosts. The malware, named NS-STEALER, is propagated via ZIP archives masquerading as cracked software, Trellix security researcher Gurumoorthi Ramanathan said in an analysis published last week. The ZIP file contains within it a rogue […]
In what’s the latest evolution of threat actors abusing legitimate infrastructure for nefarious ends, new findings show that nation-state hacking groups have entered the fray in leveraging the social platform for targeting critical infrastructure. Discord, in recent years, has become a lucrative target, acting as a fertile ground for hosting malware using its content delivery […]
A new Golang-based information stealer called Skuld has compromised Windows systems across Europe, Southeast Asia, and the U.S. “This new malware strain tries to steal sensitive information from its victims,” Trellix researcher Ernesto Fernández Provecho said in a Tuesday analysis. “To accomplish this task, it searches for data stored in applications such as Discord and […]
Users of Discord have been informed of a data breach that was caused after a threat actor got unauthorized access to the support request queue of a third-party customer care representative. The incident was brought to users’ attention by the messaging platform Discord. A letter that was sent to users who were affected by the […]
The Securities and Exchange Commission (SEC) has just announced that it will be filing charges against eight individuals in connection with a $100 million securities fraud scheme. In this scheme, the defendants manipulated exchange-traded stocks by using the social media platforms Twitter and Discord. Securities fraud, also known as stock fraud and investment fraud, is […]
Specialists at Trend Micro analyzed a set of CMD-based ransomware samples that appear to have advanced capabilities for stealing sensitive information, bypassing remote desktop connections, and a feature to spread through physical drives and emails alike. Identified as YourCyanide, this new ransomware integrates documents from PasteBin, Discord and Microsoft Office to hide its payload before […]
OpenSea, probably the most famous non-fungible token (NFT) market platform, has being target of another cyberattack incident. This time, the hack involves its Discord server, where a massive phishing attack was carried out against several users who clicked on a link that led to claim a supposed free NFT. Reports began during the early hours […]
At the end of 2021, the Non-Fungible Token (NFT) projects Monkey Kingdom and Fractal were targeted by the same hacking variant, in which electronic fraud was made possible by the abuse of Discord servers associated with these projects. According to the report published by The Verge, in the official channels of these projects suddenly appeared […]
Cybersecurity specialists report the detection of a set of malicious packages in Node.js package manager repository (npm) designed to collect Discord tokens and eventually take control of the affected accounts. As some users may recall, the npm repository is an open source platform for JavaScript developers to share and reuse blocks of code. Malicious packages […]
At least 17 malware-laced packages have been discovered on the NPM package Registry, adding to a recent barrage of malicious software hosted and delivered through open-source software repositories such as PyPi and RubyGems. DevOps firm JFrog said the libraries, now taken down, were designed to grab Discord access tokens and environment variables from users’ computers […]
Cybersecurity researchers have uncovered as many as 11 malicious Python packages that have been cumulatively downloaded more than 41,000 times from the Python Package Index (PyPI) repository, and could be exploited to steal Discord access tokens, passwords, and even stage dependency confusion attacks. The Python packages have since been removed from the repository following responsible […]
The gamer community is facing new risk through the communication platform Discord. Reports indicate that a cybercriminal group is abusing this platform to deploy malware against thousands of users. Experts at security firm Zscaler mention that attackers deploy these campaigns through the cdn.discordapp.com service. As you may remember, Discord is an application that allows users […]
One of the most frequently used messenger services out there is Discord among others. Lately, they have been in trouble due to their Microsoft Windows app being infected with malware. Since it is built using an opensource framework named Electron. For those who don’t know Electron relies heavily on the 3 basic web languages: HTML, […]
Hackers targeting Cryptocurrency users On Slack and Discord chat platforms with MACOS Malware dubbed OSX.Dummy. The malware targeted users in crypto related chat groups Slack or Discord by impersonating admins or key people. Attackers shared small snippets which result in downloading the malware said Remco Verhoef, who spotted the malware first. Hackers trick’s users to […]
Hackers are using a new MacOS malware aimed at cryptocurrency investors on Discord and Slack group chat communities. The malware was initially discovered by an IT security expert Remco Verhoef and later analyzed by Patrick Wardle, a former NSA white hat hacker and malware researcher. Dubbed OSX.Dummy; the malware has been developed in such a way that […]
Control remote computers using discord bot and python 3. [ ! ] If your target is a windows system, you may want to compile your payload. Do this with py2exe or pyinstaller. MAINTAINERS Alisson Moretto | Twitter: @A1S0N_ Github: @A1S0N PREREQUISITES Python 3.x pip3 subprocess from python3 Discord from python3 TESTED ON Kali Linux – […]
Malicious actors are abusing a free VoIP service for gamers to distribute remote access Trojans, as well as infostealers and downloaders. Discord, a free VoIP service designed for gaming communities, has had its chat servers abused to host malware. Most of the malicious samples found distributed on the app were remote access Trojans (RATs), such […]