Priya Patel
TLDR: What’s Trending in Cybersecurity Today
- North Korean hackers exploit eScan antivirus updates to deploy GuptiMiner malware
- Wavestealer malware quietly steals data with advanced evasion techniques
In the cybersecurity world on April 24, 2024, several key incidents and trends have emerged:
North Korean hackers have been exploiting eScan antivirus updates to deploy highly sophisticated GuptiMiner malware, despite fixes from eScan. Additionally, a new malware named Wavestealer has been identified as a severe threat due to its ability to silently steal sensitive information using advanced evasion techniques such as polymorphic code. The CoralRaider malware campaign orchestrated by threat actor CoralRaider has been leveraging Content Delivery Network caches to distribute malware since February 2024. Hackers have also been using the Electron Framework to develop cross-platform infostealer malware with stealth capabilities. Other incidents include Russian hackers striking an Indiana water plant, a data breach resurfacing in the Nothing community, the Chivo Bitcoin wallet code being leaked by hackers, and a ransomware attack hitting Swedish logistics firm Skanlog.
In cyber news, the US has imposed sanctions on four Iranian nationals linked to cyberattacks on American government agencies and businesses, and major AI firms have committed to preventing technologies from being used to create or distribute child sexual abuse material. Blockchain and AI incubator 0G Labs and One Piece Labs have launched a program for startups, and zero-day exploits have been on the rise in cyberattack trends. CISA is set to deliver a critical software list by September 30 to strengthen federal cybersecurity.
