Supply Chain Attack

Malicious npm Packages Stealing Developers’ Sensitive DataMalicious npm Packages Stealing Developers’ Sensitive Data

Malicious npm Packages Stealing Developers’ Sensitive Data

Attackers published 20 malicious npm packages impersonating legitimate Nomic Foundation and Hardhat plugins, where these packages, downloaded over 1,000 times,…

3 months ago
PKfail, Critical Firmware Supply-Chain Issue Let Attackers Bypass Secure BootPKfail, Critical Firmware Supply-Chain Issue Let Attackers Bypass Secure Boot

PKfail, Critical Firmware Supply-Chain Issue Let Attackers Bypass Secure Boot

Hackers often attack secure boot during the boot process to execute unauthorized code, which gives them the ability to bypass…

8 months ago
Sisence Data Breach, CISA Urges To Reset Login CredentialsSisence Data Breach, CISA Urges To Reset Login Credentials

Sisence Data Breach, CISA Urges To Reset Login Credentials

In response to a recent data breach at Sisense, a provider of data analytics services, the U.S. Cybersecurity and Infrastructure…

12 months ago
Carderbee Hacking Group Uses Legitimate Software in Supply Chain AttackCarderbee Hacking Group Uses Legitimate Software in Supply Chain Attack

Carderbee Hacking Group Uses Legitimate Software in Supply Chain Attack

For a supply chain attack and to plant the Korplug backdoor (aka PlugX) on the systems of the targeted victims,…

2 years ago