North Korea-linked APT Lazarus is using a MagicLine4NX zero-day flaw in supply chain attack
UK and South Korea agencies warn that North Korea-linked APT Lazarus is using a MagicLine4NX…
1 week ago
supply chain attack
North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software
North Korea-linked APT group Diamond Sleet is distributing a trojanized version of the CyberLink software…
2 weeks ago
Ukrainian hackers are behind the Free Download Manager supply chain attack
The recently discovered Free Download Manager (FDM) supply chain attack, which distributed Linux malware, started…
3 months ago
Free Download Manager backdoored to serve Linux malware for more than 3 years
Researchers discovered a free download manager site that has been compromised to serve Linux malware…
3 months ago
Malicious packages in the NPM designed for highly-targeted attacks
Researchers discovered a new set of malicious packages on the npm package manager that can…
4 months ago
Experts warn of OSS supply chain attacks against the banking sector
Checkmark researchers have uncovered the first known targeted OSS supply chain attacks against the banking sector.…
4 months ago
PyTorch compromised to demonstrate dependency confusion attack on Python environments
Threat actors compromised the PyTorch Machine Learning Framework by adding a malicious dependency. The maintainers…
11 months ago
250+ U.S. news sites spotted spreading FakeUpdates malware in a supply-chain attack
Threat actors compromised a media company to deliver FakeUpdates malware through the websites of hundreds…
1 year ago
A flaw in the Packagist PHP repository could have allowed supply chain attacks
Experts disclosed a flaw in the PHP software package repository Packagist that could have been…
1 year ago
Trojanized Comm100 Live Chat app installer distributed a JavaScript backdoor
A threat actor used a trojanized installer for the Comm100 Live Chat application to distribute…
1 year ago
This website uses cookies.