All posts tagged "supply chain attack"
-
Security
/ 2 months agoGoogle Links Axios npm Attack to North Korean Hackers
Google has formally attributed a recent software supply chain attack to a North Korean state-sponsored hacking group. The attack targeted the...
-
Artificial Intelligence
/ 2 months agoAI Startup Mercor Hit by Cyberattack via Compromised Open-Source Tool
AI recruiting startup Mercor has confirmed a security incident after a cybercriminal group claimed responsibility for stealing data from the company’s...
-
Security
/ 2 months agoAxios npm Package Compromised in Supply Chain Attack
Two versions of the widely used Axios HTTP client library were found to contain malicious code this week, following a compromise...
-
Security
/ 2 months agoMalicious Telnyx Versions on PyPI Hide Stealer in WAV Files
A threat actor known as TeamPCP has pushed two malicious versions of the telnyx Python package to the official software repository,...
-
Security
/ 2 months agoCheckmarx GitHub Actions Compromised by TeamPCP Hackers
A threat actor known as TeamPCP has compromised two GitHub Actions workflows maintained by the software supply chain security firm Checkmarx....
-
Security
/ 2 months agoMalicious npm Packages Steal Crypto Wallets in ‘Ghost’ Campaign
cybersecurity researchers have identified a new set of malicious software packages within the widely used npm registry, designed to steal cryptocurrency...
-
Security
/ 2 months agoMalicious Backdoor Found in Popular Python Package LiteLLM
A widely used Python library for managing large language model APIs has been compromised, with two of its versions containing a...
-
Security
/ 2 months agoMalicious Trivy Docker Images Spread Infostealer, Worm
cybersecurity researchers have identified a series of malicious container images distributed on Docker Hub, stemming from a recent supply chain attack...
-
Security
/ 2 months agoSupply Chain Attack Spreads Worm Through npm Packages
A significant software supply chain attack has compromised dozens of popular npm packages, deploying a self-propagating worm. Security researchers report that...
-
Security
/ 3 months agoTrivy GitHub Actions Compromised, Secrets Stolen in Supply Chain Attack
The GitHub Actions for Trivy, a widely used open-source security scanner, were compromised for the second time in a month, leading...
Artificial Intelligence
Threads Tests Meta AI Integration Similar to Grok Feature
Artificial Intelligence
AI voice startup Vapi valued at $500M after Amazon Ring deal
Recent Posts
