new XCSSET macOS malware 

Microsoft warns of new XCSSET macOS malware variant targeting Xcode devs Malware Threat Microsoft Threat Intelligence reports that a new variant of the XCSSET macOS malware has been detected in limited attacks, incorporating several new features, including enhanced browser targeting, clipboard hijacking, and improved persistence mechanisms. XCSSET is a modular macOS malware that acts as an infostealer and cryptocurrency stealer, stealing Notes, cryptocurrency wallets, and browser data from infected devices. The malware spreads by searching for and infecting other Xcode projects found on the device, so that the malware is executed when the project is built. “The XCSSET malware is designed to infect Xcode projects, typically used by software developers, and run while an Xcode project is being built,” explains Microsoft. “We assess that this mode of infection and propagation banks on project files being shared among developers building Apple or macOS-related applications.” In a new variant observed by Microsoft, researchers have noted several changes. Read the complete article here at Bleeping Computers Comprehensive antivirus for Mac Protect your Mac from malware, ransomware, and other cyberthreats with a reliable, easy-to-use business antivirus. Key features Our antivirus for Mac includes an automated process that offers threat detection and malware scanning, ensuring every device is covered. Advanced, next-generation threat detectionOur Mac device protection stays up-to-date with the latest malware threats. Despite the common misconception that Apple devices are immune to cyberattacks, they still need solid protection.Proactive defense against malwareWe proactively stay ahead of cyberthreats. Our solution scans and identifies threats when they appear, and analyzes files and programs before allowing them to open and potentially harm your device.Increased efficiency and productivityLooking to boost efficiency and productivity? Our Mac antivirus solution eliminates manual scans and threat detection, enabling employees to focus their time and resources on running the business.Complete protection, all in one placeOur online management platform allows you to easily set up and install your protection, monitor devices, manage subscriptions, and more from one place — anytime, anywhereSecure sensitive business data and processesRest assured that your sensitive data and customers’ data are secured. By quickly detecting and removing cyberthreats on your device, our solution allows you to be confident that malware will not jeopardize your information security.Seamless integration with your existing endpoint environmentSpecially designed to seamlessly integrate with your existing network, our Mac device protection is easy to use and install, and effortlessly complements the digital environment of any business. See our Business products Talk to us on live chat or call +44 207 1004509

Unofficial Postmark MCP

Unofficial Postmark MCP npm silently stole users’ emails A npm package copying the official ‘postmark-mcp’ project on GitHub turned bad with the latest update that added a single line of code to exfiltrate all its users’ email communication. Published by a legitimate-looking developer, the malicious package was a perfect replica of the authentic one in terms of code and description, appearing as an official port on npm for 15 iterations. Model Context Protocol (MCP) is an open standard that allows AI assistants to interface with external tools, APIs, and databases in a structured, predefined, and secure manner. Postmark is an email delivery platform, and Postmark MCP is the MCP server that exposes Postmark’s functionality to AI assistants, letting them send emails on behalf of the user or app. As discovered by Koi Security researchers, the malicious package on npm was clean in all versions through 1.0.15, but in the 1.0.16 release, it added a line that forwarded all user emails to an external address at giftshop[.]club linked to the same developer. Read the full article here at Bleeping Competer Talk to us on live chat or call +44 207 1004509

NPAV- Europe Launch Release

Net Protector and Avosec Launch – Net Protector Europe Expanding Enterprise NPAV Cybersecurity Solutions Across Europe and Beyond London, UK – 25 August 2025 – NPAV, a leading provider of enterprise-grade cybersecurity solutions, today announced a strategic partnership with Avosec, a globally recognised cybersecurity distributor, to launch NPAV Europe. As part of this collaboration, a division of Avosec will now operate under the NPAV Europe brand name, bringing the company’s cost-effective and reliable cybersecurity solutions directly to European and Western markets. Through this initiative, NPAV Europe will provide businesses with comprehensive enterprise security solutions supported by dedicated sales and technical specialists based in the West. Through this collaboration, organizations of all sizes can not only access scalable, high-performance cybersecurity tools but also benefit from localized guidance and support, ensuring seamless protection and enhanced operational efficiency. “Our mission has always been to deliver enterprise-grade cybersecurity solutions that are accessible, reliable, and scalable,” said Sumeet Kela, CEO of NPAV. “By partnering with Avosec and establishing NPAV Europe, we can now provide European customers with the full benefits of our solutions, backed by a local team that understands their needs. This partnership strengthens our commitment to affordable, enterprise-level security.” NPAV Europe will leverage Avosec’s established distribution network, technical expertise, and marketing resources to bring a full suite of NPAV solutions—including endpoint protection, disk encryption, and advanced threat prevention—to European enterprises. The division operating under the NPAV Europe brand will focus on partner enablement, hands-on technical support, and training to ensure seamless “We are proud to establish NPAV Europe as a dedicated division of Avosec,” said James Norris, CEO of Avosec. “This move demonstrates our commitment to supporting NPAV’s international expansion while providing European customers with strong, cost-effective cybersecurity solutions. Our local sales and support specialists will ensure partners and clients receive the highest levels of service and expertise.” The launch of NPAV Europe marks a significant milestone in the international expansion of NPAV, combining product innovation with local support and market presence to deliver enterprise cybersecurity solutions that are both affordable and effective. “We are proud to establish NPAV Europe as a dedicated division of Avosec,” said James Norris, CEO of Avosec. “This move demonstrates our commitment to supporting NPAV’s international expansion while providing European customers with strong, cost-effective cybersecurity solutions. Our local sales and support specialists will ensure partners and clients receive the highest levels of service and expertise.” The launch of NPAV Europe marks a significant milestone in the international expansion of NPAV, combining product innovation with local support and market presence to deliver enterprise cybersecurity solutions that are both affordable and effective. More Information For more information on NPAV Europe and its range of cybersecurity solutions, please visit https://npav.co.uk About AVOSEC Avosec is a London-based cybersecurity distributor with operations across Europe and Asia. Avosec provides technical, sales, and marketing support to partners while enabling access to leading cybersecurity solutions. About NPAV NPAV is a global provider of enterprise cybersecurity solutions, focused on delivering prevention, detection, and response capabilities that are scalable, reliable, and cost-effective for organizations of all sizes. Media Contact Avosec GroupYsabelle NorrisEmail: [email protected]: ‪+44 20 71004509‬www.avosec.com #NetProtector #CyberSecurity #DataProtection #DigitalSafety #OnlineSecurity #RiskManagement #TechSolutions #InformationSecurity #NetworkSafety #PrivacyMatters #EndpointSecurity #CyberSecurity #NPAV #DataProtection #ThreatDetection #MalwareProtection #InformationSecurity #NetworkSecurity #ITSecurity #CyberDefense Talk to us on live chat or call +44 207 1004509

SEQRITE XDR with SIA

Empower Your Enterprise with SEQRITE EPP XDR with SIA AI Security Analyst Robust cybersecurity solutions are not only essential but also imperative for safeguarding your enterprise against evolving threats. SEQRITE, a pioneer in endpoint protection, offers a comprehensive suite of solutions designed to fortify your defences and streamline security operations. At the forefront of their offerings are SEQRITE EPP XDR and SIA AI Security Analyst, revolutionising how businesses manage and respond to cybersecurity challenges. Understanding SEQRITE EPP XDR SEQRITE Endpoint Protection Platform (EPP) XDR stands as a beacon of defence against sophisticated cyber threats. Unlike traditional endpoint security solutions, EPP XDR integrates advanced detection capabilities with cross-layered detection and response (XDR) capabilities. This proactive approach ensures real-time threat detection across endpoints, networks, and cloud environments, empowering IT teams to swiftly identify, investigate, and mitigate threats before they escalate. The Role of SEQRITE SIA AI Security Analyst In tandem with EPP XDR, SEQRITE SIA (Security Intelligence Analyst) leverages artificial intelligence to augment cybersecurity operations. SIA serves as a virtual security analyst, continuously monitoring and analysing security incidents to provide actionable insights. By automating routine tasks such as threat hunting, incident response, and security policy enforcement, SIA enhances operational efficiency while reducing the burden on IT teams. This intelligent automation enables enterprises to scale their security posture effectively without compromising on agility or accuracy. Benefits of SIA in Enterprise Security Proactive Threat Detection: SIA’s AI-driven analytics proactively identifies anomalies and potential threats, preemptively safeguarding enterprise assets. Automated Incident Response: By automating incident response workflows, SIA accelerates threat containment and minimises downtime, bolstering business continuity. Enhanced Operational Efficiency: IT resources are liberated from repetitive tasks, allowing them to focus on strategic initiatives that drive business growth. Scalability and Adaptability: SIA adapts to evolving threat landscapes and business environments, ensuring continuous protection without compromising performance. Why Choose SEQRITE EPP XDR and SIA? SEQRITE’s commitment to innovation and security excellence makes EPP XDR and SIA indispensable for enterprises seeking comprehensive cybersecurity solutions. From preemptive threat detection to automated incident response, SEQRITE empowers organisations to stay ahead of cyber adversaries while optimising operational resilience. In conclusion, SEQRITE EPP XDR, coupled with SIA AI Security Analyst, represents a paradigm shift in enterprise cybersecurity, combining advanced threat detection with intelligent automation to comprehensively safeguard your digital assets. Embrace the future of cybersecurity with SEQRITE and fortify your enterprise against today’s and tomorrow’s threats. More Information Talk to us on live chat or call +44 207 1004509

Translate »