Cyberveillecurated by Decio
Nuage de tags
Mur d'images
Quotidien
thumbnail Twilio denies breach following leak of alleged Steam 2FA codes
thumbnail RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)
thumbnail Malicious PyPI Package Targets Discord Developers with Remot...
thumbnail wget to Wipeout: Malicious Go Modules Fetch Destructive Payload
thumbnail Linux wiper malware hidden in malicious Go modules on GitHub
thumbnail Using Trusted Protocols Against You: Gmail as a C2 Mechanism...
thumbnail JFrog Detects Malicious PyPi package Stealing Crypto Tokens
thumbnail XRP supply chain attack: Official NPM package infected with crypto stealing backdoor
thumbnail npm Malware Targets Telegram Bot Developers with Persistent SSH Backdoors
thumbnail The Rise of Slopsquatting: How AI Hallucinations Are Fueling a New Class of Supply Chain Attacks
thumbnail Large enterprises scramble after supply-chain attack spills their secrets
thumbnail Microsoft spots XCSSET macOS malware variant used for crypto theft
thumbnail 8 Million Requests Later, We Made The SolarWinds Supply Chain Attack Look Amateur
thumbnail Go Module Mirror served backdoor to devs for 3+ years - Ars Technica
thumbnail New details reveal how hackers hijacked 35 Google Chrome extensions
thumbnail A new playground: Malicious campaigns proliferate from VSCode to npm
thumbnail Supply Chain Attack on Rspack npm Packages Injects Cryptojac...
thumbnail zizmor would have caught the Ultralytics workflow vulnerability
thumbnail Ultralytics AI model hijacked to infect thousands with cryptominer
thumbnail Python Crypto Library Updated to Steal Private Keys
thumbnail Triad Nexus: Silent Push exposes FUNNULL CDN hosting DGA domains for suspect Chinese gambling sites, investment scams, a retail phishing campaign, and a polyfill.io supply chain attack impacting 110,000+ sites
thumbnail Researchers link Polyfill supply chain attack to huge network of copycat gambling sites
thumbnail Malicious Python Package Targets macOS Developers
thumbnail Fake AWS Packages Ship Command and Control Malware In JPEG Files
thumbnail Iraq-based cybercriminals deploy malicious Python packages to steal data
thumbnail Persistent npm Campaign Shipping Trojanized jQuery
thumbnail Supply Chain Compromise Leads to Trojanized Installers | Rapid7 Blog
thumbnail RoguePuppet – A Critical Puppet Forge Supply Chain Vulnerability
thumbnail Polyfill claims it has been 'defamed', returns after domain shut down
thumbnail Malicious PyPI packages targeting highly specific MacOS machines
thumbnail What we know about the xz Utils backdoor that almost infected the world
thumbnail AI bots hallucinate software packages and devs download them
thumbnail Over 170K users hit by poisoned Python package ruse
thumbnail Info Stealing Packages Hidden in PyPI
thumbnail Three New Malicious PyPI Packages Deploy CoinMiner on Linux Devices | FortiGuard Labs
thumbnail Supply chain attack targeting Ledger crypto wallet leaves users hacked
thumbnail Diamond Sleet supply chain compromise distributes a modified CyberLink installer
thumbnail The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets
thumbnail Dozens of npm Packages Caught Attempting to Deploy Reverse Shell
thumbnail Python obfuscation traps
thumbnail Users of Telegram, AWS, and Alibaba Cloud targeted in latest supply chain attack
thumbnail The evolutionary tale of a persistent Python threat 
thumbnail Trojanized Free Download Manager found to contain a Linux backdoor
thumbnail Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs - SecurityWeek
thumbnail Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers
thumbnail VMConnect supply chain attack continues, evidence points to North Korea - Security Boulevard
thumbnail Six Malicious Python Packages in the PyPI Targeting Windows Users
thumbnail Operation Brainleeches: Malicious npm packages fuel supply chain and phishing attacks
thumbnail PyPI Attackers Still At It: Malicious Packages Drop Trojans and Info-stealers
thumbnail Hijacking S3 Buckets: New Attack Technique
thumbnail Bad Actors Are Joining the AI Revolution: Here’s What We’ve Found in the Wild
thumbnail Software Maker 3CX Was Compromised in First-of-its-Kind Threaded Supply-Chain Hack
thumbnail X_Trader Supply Chain Attack Affects Critical Infrastructure Organizations in U.S. and Europe
thumbnail 3CX Software Supply Chain Compromise Initiated by a Prior Software Supply Chain Compromise; Suspected North Korean Actor Responsible
thumbnail Hackers compromise 3CX desktop app in a supply chain attack