12 May 2025
By Mary

InfoSec News Nuggets 5/12/2025

PowerSchool paid thieves to delete stolen student, teacher data. Looks like crooks lied An education tech provider that paid a ransom to prevent the leak of stolen student and teacher data is now watching its school district customers get individually extorted by either the same ransomware crew that hit it – or someone connected to the crooks. In December, PowerSchool – whose student information management system holds records on more than 60 million K-12 students…
Read More
09 Apr 2025
By Mary

InfoSec News Nuggets 4/9/2025

Malicious VSCode extensions infect Windows with cryptominers  A set of ten VSCode extensions on Microsoft's Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer for Monero. Microsoft VSCode is a popular code editor that allows users to install extensions to extend the program's functionality. These extensions can be downloaded from Microsoft's VSCode Marketplace, an online hub for developers to find and install add-ons. ExtensionTotal researcher Yuval Ronen has uncovered ten VSCode extensions published on Microsoft's portal on April 4, 2025.    Maryland pharmacist used keyloggers to spy…
Read More
26 Feb 2025
By Mary

InfoSec News Nuggets 2/26/2025

GitVenom attacks abuse hundreds of GitHub repos to steal crypto A malware campaign dubbed GitVenom uses hundreds of GitHub repositories to trick users into downloading info-stealers, remote access trojans (RATs), and clipboard hijackers to steal crypto and credentials. According to Kaspersky, GitVenom has been active for at least two years, targeting users globally but with an elevated focus on Russia, Brazil, and Turkey. "Over the course of the GitVenom campaign, the threat actors behind it…
Read More