All posts tagged "supply chain attack"
-
Security
/ 2 days agoCline CLI Supply Chain Attack Installs OpenClaw Malware
An open-source coding assistant tool was compromised in a software supply chain attack, leading to the unauthorized installation of a popular...
-
Security
/ 4 days agoNotepad++ Patches Security Flaw in Update System
The developers of the widely used text editor Notepad++ have released a critical security update to address a vulnerability that allowed...
-
Security
/ 6 days agoTrojanized Oura MCP Server Deploys StealC Infostealer
cybersecurity researchers have identified a new campaign distributing the SmartLoader malware, which uses a trojanized version of a legitimate Model Context...
-
Security
/ 6 days agoAndroid Tablet Firmware Backdoor Found in Signed Updates
Security researchers have discovered a sophisticated backdoor embedded within the firmware of several Android tablet brands. The malware, which is distributed...
-
Security
/ 1 week agoLazarus Group Targets npm, PyPI with Malicious Software Packages
cybersecurity researchers have identified a new series of malicious software packages within the npm and Python Package Index (PyPI) ecosystems. These...
-
Security
/ 2 weeks agoFirst Malicious Outlook Add-In Steals Thousands of Credentials
cybersecurity researchers have identified the first known malicious Microsoft Outlook add-in actively used in attacks, a novel supply chain compromise that...
-
Security
/ 2 weeks agoCompromised dYdX npm and PyPI Packages Deliver Malware
Cybersecurity researchers have identified a software supply chain attack targeting developers working with the dYdX decentralized exchange. Malicious actors have compromised...
-
Security
/ 3 weeks agoOpen VSX Registry Hit by Supply Chain Attack Spreading GlassWorm
cybersecurity researchers have disclosed a software supply chain attack targeting the Open VSX Registry, a popular marketplace for open-source development tools....
-
Security
/ 3 weeks agoeScan Antivirus Update Servers Hacked to Spread Malware
The update infrastructure for eScan antivirus, a security product from Indian cybersecurity firm MicroWorld Technologies, has been compromised by unknown attackers....
-
Security
/ 3 weeks agoNotepad++ Update System Hijacked in Targeted Attack
The developer of the widely used Notepad++ text editor has disclosed that the software’s official update mechanism was compromised, allowing attackers...
