all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

This Week in Malware—Malicious ‘Distutil’ and Spring4Shell active exploitation

Add to bookmarks
April 22, 2022, 1:30 p.m. | Ax Sharma

Security Boulevard securityboulevard.com




This week in malware we have a lot to go over. A mysterious 'Distutil' Python library found on the PyPI repository, active Spring4Shell exploitation by threat actors deploying crypto-miners, ProxyShell exploits targeting Microsoft Exchange servers, an open source utility claiming to add Google Play store to PCs but containing obfuscated malware, ongoing dependency confusion attempts, and last but not the least, the GitHub OAuth tokens compromise, that impacted a dozen organizations including npm.


The post This Week in Malware—Malicious ‘Distutil’ …

dependency confusion devzone exploitation github malicious malware nexus firewall spring4shell this week in malware vulnerabilities

Visit resource

More from securityboulevard.com / Security Boulevard

The Next Chapter of Behavioral Threat Assessment for Ontic and SIGMA 3 hours ago | securityboulevard.com
article assessment doing important +17
Nigeria, Romania, Russia, U.S. Among Top Cybercrime Nations 3 hours ago | securityboulevard.com
analytics & intelligence attacks brazil cashing out +28
Dan Solove on Privacy Regulation 5 hours ago | securityboulevard.com
academic papers article consent dan +8
Multiple Squid Vulnerabilities Fixed in Ubuntu 7 hours ago | securityboulevard.com
attacks cache critical denial-of-service (dos) +27
eIDAS 2.0: The concerns surrounding this new standard 7 hours ago | securityboulevard.com
centralization discover eidas facing +5
The 5 Best Practices for PCI DSS Compliance 8 hours ago | securityboulevard.com
best practices blog compliance dss +7
5 Ways to Step Up Your AD Hygiene with Silverfort 9 hours ago | securityboulevard.com
access active directory administrators applications +14
BatBadBut Vulnerability Exposes Windows Systems To Attacks 9 hours ago | securityboulevard.com
attacks batbadbut batch command +35
Back to Security Basics 9 hours ago | securityboulevard.com
back basics businesses computer +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Specialist

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

IT Security Manager (Corporate Security) (REF822R)

@ Deutsche Telekom IT Solutions | Budapest, Hungary
View on infosec-jobs.com

Senior Security Architect

@ Cassa Centrale Banca - Credito Cooperativo Italiano | Trento, IT, 38122
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Raft | Las Vegas, NV (Remote)
View on infosec-jobs.com

Product Manager - Compliance

@ Arctic Wolf | Remote - Colorado
View on infosec-jobs.com
View more jobs