All posts tagged "supply chain attack"
-
WordPress
/ 2 weeks agoWordPress.com response to massive plugin supply chain attack detailed
WordPress.com has detailed its security response to a major supply chain attack affecting more than 30 plugins, an incident that compromised...
-
Security
/ 2 weeks agoResearchers Find Four Malicious npm Packages Spreading Malware
Cybersecurity researchers have identified four new packages available on the npm registry that contain information-stealing malware. One of these packages is...
-
Security
/ 2 weeks agoWeekly Security Recap: Exchange Zero-Day, npm Worm, and Cisco Exploit
This week opened with significant security challenges affecting widely used systems. A critical vulnerability in a popular mail server is under...
-
Security
/ 3 weeks agoSupply chain attack on TanStack impacts OpenAI employee devices
OpenAI has confirmed that a supply chain attack on the JavaScript library TanStack, known as the “Mini Shai-Hulud” incident, compromised two...
-
Security
/ 3 weeks agoCybersecurity Bulletin Highlights PAN-OS RCE, cURL Bug, and More
A new cybersecurity threat digest has detailed a series of active vulnerabilities and attacks, including a critical remote code execution flaw...
-
Security
/ 3 weeks agoMalicious Code Found in Three Node-IPC Package Versions
Cybersecurity researchers have issued warnings about malicious activity discovered in newly published versions of the widely used Node IPC package. The...
-
Security
/ 3 weeks agoRubyGems Attack Uses 150+ Packages for Data Theft
cybersecurity researchers have uncovered a campaign targeting the RubyGems repository, involving more than 150 malicious packages. The operation, named GemStuffer by...
-
Security
/ 3 weeks agoSupply Chain Attack Campaign Targets Tech and AI Firms
A coordinated Supply chain attack campaign has compromised software packages belonging to several prominent technology and artificial intelligence companies, including TanStack,...
-
Security
/ 3 weeks agoFake OpenAI Privacy Filter Tops Hugging Face, Steals Windows Data
A fraudulent repository on the Hugging Face platform climbed to the number one spot on the trending list by posing as...
-
Security
/ 4 weeks agoLinux Malware Targets Developer Credentials in Supply Chain Attack
A newly identified Linux malware, known as Quasar Linux RAT (QLNX), is actively targeting software developers to steal credentials and compromise...
Artificial Intelligence
Threads Tests Meta AI Integration Similar to Grok Feature
Artificial Intelligence
AI voice startup Vapi valued at $500M after Amazon Ring deal
Recent Posts
