Nuacht

The Hacker News4 lá
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Malicious npm packages targeting Cursor macOS users stole credentials and disabled updates, impacting 3,200+ downloads.
SecurityWeek4 lá
Popular Scraping Tool’s NPM Package Compromised in Supply Chain Attack
Supply chain attack compromises the popular rand-user-agent scraping NPM package to deploy and activate a backdoor.
Dangerous Linux wiper malware hidden within Go modules on GitHub
Dangerous Linux malware, capable of bricking servers, has been found in Golang modules on GitHub, experts are saying.
Security Boulevard8 lá
California Man Will Plead Guilty to Last Year’s Disney Hack
A 25-year-old California man will plead guilty to hacking into a Disney's personal computer and using stolen credentials to break into thousands of Disney Slack channels. Ryan Mitchell Kramer, who ...
Virtualization Review8 lá
Cloud Security Threats Expand Beyond Misconfigured Storage Buckets: Report
Cloud breaches are no longer limited to misconfigured storage buckets. As infrastructure migrates to the cloud, attackers are ...
Gmail servers hijacked by malicious PyPI packages to spread havoc - here's how to stay safe
Several malicious PyPI packages were recently observed abusing Gmail to exfiltrate stolen sensitive data and communicate with ...
The Hacker News10 lá
Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack
Malicious Go and PyPI packages use Gmail and wget to exfiltrate data, wipe Linux disks, and hijack crypto credentials.