All posts tagged "Software Supply Chain"
-
Security
/ 2 days agoResearchers Find 73 Fake VS Code Extensions Spreading GlassWorm Malware
cybersecurity researchers have identified a cluster of 73 fraudulent extensions on the Open VSX repository for Microsoft Visual Studio Code, linking...
-
Security
/ 2 weeks agoCritical Composer Flaws Allow Command Execution, Patches Issued
Two high severity security vulnerabilities in Composer, the widely used package manager for PHP, have been patched after discovery that they...
-
Security
/ 1 month agoSecurity Flaw Allowed Malicious VS Code Extensions to Bypass Checks
cybersecurity researchers have disclosed a critical vulnerability in the Open VSX registry that, until recently, allowed malicious extensions for Microsoft’s Visual...
-
Security
/ 1 month agoGitHub Tokens Stolen to Force Malware into Python Repositories
A widespread software supply chain attack, dubbed GlassWorm, is actively compromising hundreds of Python code repositories by using stolen GitHub access...
-
Security
/ 2 months agoMalicious Laravel Packages on Packagist Spread Cross-Platform RAT
cybersecurity researchers have identified a series of malicious packages within the official Packagist repository for PHP, posing as legitimate Laravel utilities...
-
Security
/ 2 months agoMalicious Go Module Steals Passwords, Deploys Linux Backdoor
cybersecurity researchers have uncovered a malicious software library in the Go programming language ecosystem designed to steal sensitive information and create...
-
Security
/ 3 months agoAI Model Discovers 500+ Critical Flaws in Open-Source Libraries
An artificial intelligence system has identified more than 500 previously unknown, high-severity security vulnerabilities across widely used open-source software libraries. The...
Recent Posts
