Security Boulevard

Use of XMRig Cryptominer by Threat Actors Expanding: Expel

Security researchers last year wrote about a surge in the use by threat actors of the legitimate XMRig cryptominer, and ...
Bleeping Computer

Misconfigured Selenium Grid servers abused for Monero mining

Threat actors are exploiting a misconfiguration in Selenium Grid, a popular web app testing framework, to deploy a modified XMRig tool for mining Monero cryptocurrency. Selenium Grid is open-source ...
Infosecurity-magazine.com

Cryptomining Malware Found in Popular Open Source Packages

A series of high-profile compromises targeting popular open source packages have been uncovered, exposing the growing risk of malicious code infiltration in widely used software tools. Threat actors ...
Bleeping Computer

Malicious Rspack, Vant packages published using stolen NPM tokens

Three popular npm packages, @rspack/core, @rspack/cli, and Vant, were compromised through stolen npm account tokens, allowing threat actors to publish malicious versions that installed cryptominers.