Cybersecurity
-
American Archive of Public Broadcasting allowed access to restricted media for years
Source: Malware BytesRead more: American Archive of Public Broadcasting allowed access to restricted media for yearsThe American Archive of Public Broadcasting (AAPB) faced security breaches due to insufficient access restrictions. Sensitive and copyrighted media was…
-
GitHub tightens npm security with mandatory 2FA, access tokens
Source: BleepingComputerRead more: GitHub tightens npm security with mandatory 2FA, access tokensGitHub has implemented mandatory two-factor authentication (2FA) for npm access tokens to bolster security against supply-chain attacks. This move comes…
-
Lean Teams, Higher Stakes: Why CISOs Must Rethink Incident Remediation
Source: The Hacker NewsRead more: Lean Teams, Higher Stakes: Why CISOs Must Rethink Incident RemediationAs corporations downsize and adopt leaner operations, the role of Chief Information Security Officers (CISOs) is becoming more critical. Executives…
-
ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service
Source: The Hacker NewsRead more: ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire ServiceCybersecurity researchers have uncovered a new botnet named ShadowV2, which can be rented to execute DDoS attacks. It primarily targets…
-
NPM package caught using QR Code to fetch cookie-stealing malware
Source: BleepingComputerRead more: NPM package caught using QR Code to fetch cookie-stealing malwareThe ‘fezbox’ npm package utilizes QR codes to hide a payload designed to steal cookies from users’ web browsers. This…
-
Scattered Spider Suspect Arrested in US
Source: SecurityWeekRead more: Scattered Spider Suspect Arrested in USA juvenile suspect was arrested on September 17 for computer intrusion, extortion, and identity theft. This case highlights the evolving…
-
GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security
Source: The Hacker NewsRead more: GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain SecurityGitHub has announced new measures to bolster security through mandatory two-factor authentication (2FA) and the implementation of short-lived tokens. These…
-
AI models are using material from retracted scientific papers
Source: MIT Technology Review SecurityRead more: AI models are using material from retracted scientific papersRecent studies reveal that some AI chatbots are using information from retracted scientific papers to generate answers. This raises concerns…
-
Automotive Titan Stellantis Discloses Data Breach
Source: SecurityWeekRead more: Automotive Titan Stellantis Discloses Data BreachStellantis has reported a data breach involving the theft of customer contact information from a third-party service provider. This incident…
-
BadIIS Malware Spreads via SEO Poisoning — Redirects Traffic, Plants Web Shells
Source: The Hacker NewsRead more: BadIIS Malware Spreads via SEO Poisoning — Redirects Traffic, Plants Web ShellsResearchers highlight a malware campaign named BadIIS, which uses SEO poisoning to target users in East and Southeast Asia, with…