Cybersecurity Blog
Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers
⚠️ September 5, 2023: This appears to be an ongoing campaign with additional packages published. The package timeline ...
Evil MinIO Exploits: A New Attack Vector to Breach Corporate Networks | Cyware Hacker News
Researchers from Security Joes have identified an unknown threat actor exploiting vulnerabilities in the MinIO Object ...
Freecycle data breach impacts 7 million members
Freecycle, a nonprofit organization which sees members exchange reusable items to divert them from landfill, has ...
Freecycle data breach impacts 7 million members
Freecycle, a nonprofit organization which sees members exchange reusable items to divert them from landfill, has ...
Yes, There’s an npm Package Called @(-.-)/env and Some Others Like it
These packages have unconventional names and some of them do not follow naming guidelines. While not all of them pose a ...
W3LL Store: How a Secret Phishing Syndicate Targets 8,000+ Microsoft 365 Accounts
Sep 06, 2023THNCyber Crime / Email Security A previously undocumented “phishing empire” has been linked to ...
New BLISTER Malware Update Fuelling Stealthy Network Infiltration
Sep 05, 2023THNCyber Threat / Malware An updated version of a malware loader known as BLISTER is being used as part of ...
Ukraine’s CERT Thwarts APT28’s Cyberattack on Critical Energy Infrastructure
Sep 06, 2023THNCyber Attack / Critical Infrastructure The Computer Emergency Response Team of Ukraine (CERT-UA) on ...