all InfoSec news
fractureiser: Developers in Minecraft's biggest mod repository "CurseForge" hit with a virus/worm attack.
June 8, 2023, 5:51 a.m. | /u/FibreTTPremises
cybersecurity www.reddit.com
##### CurseForge, Bukkit, and Spigot themselves were not hacked.
---
#### The Timeline
* Malcious user uploaded an infected mod and steals accounts.
* At the same time, a well known developer was hacked.
* Threat actor uploaded new infected versions of several mods to the platform using hacked accounts, many a part of very popular modpacks.
* New stage was released that steals credentials, infects other jar files on the system, and more.
A visualisation of the …
accounts actor cybersecurity developer hacked hacked accounts mod mods platform popular stage threat threat actor timeline
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Senior Security Specialist, Forsah Technical and Vocational Education and Training (Forsah TVET) (NEW)
@ IREX | Ramallah, West Bank, Palestinian National Authority
Consultant(e) Junior Cybersécurité
@ Sia Partners | Paris, France
Senior Network Security Engineer
@ NielsenIQ | Mexico City, Mexico
Senior Consultant, Payment Intelligence
@ Visa | Washington, DC, United States
Corporate Counsel, Compliance
@ Okta | San Francisco, CA; Bellevue, WA; Chicago, IL; New York City; Washington, DC; Austin, TX
Security Operations Engineer
@ Samsara | Remote - US