You might be interested in …

[TheRecord] New JavaScript malware works as a “RAT dispenser”

Cybersecurity experts from HP said they discovered a new strain of JavaScript malware that criminals are using as a way to infect systems and then deploy much dangerous remote access trojans (RATs). Cleverly named RATDispenser, the malware has been distributed in the wild for at least three months in the form of email messages carrying malicious […]

Read More

Daily NCSC-FI news followup 2020-12-16

SunBurst: the next level of stealth blog.reversinglabs.com/blog/sunburst-the-next-level-of-stealth SolarWinds compromise exploited through sophistication and patience. ReversingLabs’ research into the anatomy of this supply chain attack unveiled conclusive details showing that Orion software build and code signing infrastructure was compromised. The source code of the affected library was directly modified to include malicious backdoor code, which was […]

Read More

[HackerNews] Travis CI Flaw Exposes Secrets of Thousands of Open Source Projects

All posts, HackerNews

Continuous integration vendor Travis CI has patched a serious security flaw that exposed API keys, access tokens, and credentials, potentially putting organizations that use public source code repositories at risk of further attacks. The issue — tracked as CVE-2021-41077 — concerns unauthorized access and plunder of secret environment data associated with a public open-source project during the […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.