Spartech Software - SparTech Software

PyPI package chimera-sandbox-extension found to be malicious – harvests AWS, CI/CD, and macOS data.

The chimera-sandbox-extensions package has been found to be a malicious Python package. It masquerades as a helper module for the Chimera Sandbox environment but was designed to steal sensitive information from targeted systems, particularly those in corporate and cloud environments.

Spartech Software June 16, 2025

Cybersecurity News

Veracode 2025 Report: Most governments have accumulated significant “security debt” through unaddressed software flaws.

According to a recent report from Veracode, most government organizations have left security flaws unaddressed for over a year, putting themselves in a very precarious position.

Spartech Software June 15, 2025

Cybersecurity News

The Ohio State University have achieved a groundbreaking milestone in quantum cybersecurity by establishing the first quantum key distribution (QKD) link

Researchers at The Ohio State University have achieved a groundbreaking milestone in quantum cybersecurity by establishing the first quantum key distribution (QKD) link on their Columbus campus. This connection uses in-ground optical fiber to securely transmit encryption keys between two buildings, marking a significant advancement in quantum network infrastructure.

Spartech Software June 15, 2025

Cybersecurity Defense

How do I tell if I’ve been infected with malware? What are the common, and technical, indicators of infection?

Malware can manifest in a variety of ways, impacting system performance, security, and user experience. Here are the most common indicators from a user's perspective.

Spartech Software June 13, 2025

Cybersecurity News

Everything we know about the Google and Cloudflare outage on June 12, 2025.

On June 12, 2025, a major internet outage disrupted a wide array of online services globally. The incident was primarily traced to a failure within Google Cloud, which had a cascading effect on Cloudflare and numerous high-profile platforms and applications.

Spartech Software June 13, 2025

Cybersecurity News

Operation Endgame takes a serious cut out of the hacking tools market.

Operation Endgame is a major, ongoing international law enforcement initiative targeting the infrastructure and services that enable ransomware and other forms of cybercrime. Launched in May 2024, the operation is coordinated by agencies including the FBI, Europol, Eurojust, and law enforcement from multiple countries such as the United States, Denmark, France, Germany, the Netherlands, and the United Kingdom.

Spartech Software June 13, 2025

Exploitation

What is Localhost Tracking and how come Meta got their hands slapped for their dirty deed.

Localhost tracking is a recently exposed technique that allowed companies—most notably Meta (the parent company of Facebook and Instagram)—to covertly link users’ mobile web browsing activity to their real identities, even if users never logged into their accounts through their browsers or used privacy features like incognito mode or cookie clearing.

Spartech Software June 13, 2025

Cybersecurity News

More than a quarter-million websites infected with JSFireTruck (JSFuck) JavaScript malware

A massive web-based malware campaign was uncovered this month, in which nearly 270,000 legitimate websites were compromised by a unique and highly obfuscated JavaScript malware known as “JSFireTruck” (a nickname for the original, profane term “JSF*ck”).

Spartech Software June 13, 2025

Cybersecurity News

CISA Advisory – Ransomware actors exploiting unpatched SimpleHelp Remote Monitoring and Management software.

CISA Cybersecurity Advisory AA25-163A, released on June 12, 2025, addresses a significant ransomware threat exploiting unpatched vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) software. The advisory was prompted by incidents in which ransomware actors compromised customers of a utility billing software provider by leveraging these vulnerabilities.

Spartech Software June 13, 2025

Cybersecurity News

New method (SmartAttack) uses ultrasonic transmissions to send stolen data from air-gapped systems to smartwatches.

A newly discovered cyberattack method, dubbed SmartAttack, leverages smartwatches and ultrasonic signals to steal data from air-gapped systems—computers physically isolated from external networks. Developed by researchers led by Mordechai Guri at Ben-Gurion University, this technique exploits smartwatch microphones to capture covert ultrasonic transmissions from compromised air-gapped machines.

Spartech Software June 13, 2025

United States	~59% of ransomware attacks globally Thousands per year
Poland	1,000+ per week
Russia	Highest cybercrime threat level
China	Thousands per year
India	115% surge in attacks Q2 2024
Ukraine	Significant surge since 2022
Brazil	Among top countries for blocked attacks
Mexico	65% of businesses hit in 2024
Germany	High targeted rate (EU)
France	High targeted rate (EU)

AS Name	ASN
Bharat Sanchar Nigam Ltd	9829
No.31,Jin-rong Street	4134
CHINA UNICOM China169 Backbone	4837
DigitalOcean, LLC	14061
HUAWEI INTERNATIONAL PTE. LTD.	136907
Amazon.com, Inc.	14618
Alibaba (US) Technology Co., Ltd.	45102
Google LLC	396982
Amazon.com, Inc.	16509
3xK Tech GmbH	200373

IP Address	Notable Exploits/Context
104.238.159.149	SharePoint zero-day, broad exploitation
107.191.58.76	SharePoint zero-day, government targets
96.9.125.147	SharePoint, previously Ivanti exploits
139.162.47.194	Exploits on CitrixBleed 2
38.180.148.215	CitrixBleed 2 campaigns
185.224.128.17	High activity, Netherlands
89.248.163.200	High activity, Netherlands
15.235.218.150	Associated with APT, active C2
45.9.148.114	Associated with C2, malicious netflow
91.107.150.184	C2 infrastructure, recent IoC