PoisonSeed Exploits CRM Accounts to Launch Cryptocurrency Seed Phrase Poisoning Attacks

THN Daily Updates [Watch LIVE] Building AI Agents Securely with Auth0 AI Agents Are Changing Business, But New Threats Require Smart Security Download Now Sponsored LATEST NEWS Apr 7, 2025 ⚡ Weekly Recap: VPN Exploits, Oracle's Silent Breach, ClickFix Comeback and More Today, every unpatched system, leaked password, and overlooked plugin is a doorway for attackers. Supply chains stretch deep into the code we trust, and malware hides not just in shady apps — but in job offers, hardwar... Read More Security Theater: Vanity Metrics Keep You Busy - and Exposed After more than 25 years of mitigating risks, ensuring compliance, and building robust security programs for Fortune 500 companies, I've learned that looking busy isn't the same as being secure. It's an easy trap ... Read More [CISO Webinar] How to Integrate SSPM with Security Operations Looking to implement SSPM or improve on your current program? Learn from the CISO of Exela Pharma Sciences. Read More PoisonSeed Exploits CRM Accounts to Launch Cryptocurrency Seed Phrase Poisoning Attacks A malicious campaign dubbed PoisonSeed is leveraging compromised credentials associated with customer relationship management (CRM) tools and bulk email providers to send spam messages containing cryptocurrency seed ph... Read More Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws A likely lone wolf actor behind the EncryptHub persona was acknowledged by Microsoft for discovering and reporting two security flaws in Windows last month, painting a picture of a "conflicted" individual straddling a ... Read More The New Frontier of Security Risk: AI-Generated Credentials GitHub Copilot adoption rose 27% (2023–2024), causing a 40% spike in secret leaks, widening enterprise attack surfaces. Read More North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages The North Korean threat actors behind the ongoing Contagious Interview campaign are spreading their tentacles on the npm ecosystem by publishing more malicious packages that deliver the BeaverTail malware, as well as a... Read More Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data Cybersecurity researchers have uncovered malicious libraries in the Python Package Index (PyPI) repository that are designed to steal sensitive information and test stolen credit card data. Two of the packages, bitcoinl... Read More [Watch LIVE] Building AI Agents Securely with Auth0 AI Agents Are Changing Business, But New Threats Require Smart Security Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi