Hackers Compromise Toptal’s GitHub, Release 10 Malicious npm Packages With 5,000 Downloads
In the latest example of a software supply chain attack, unidentified threat actors breached Toptal's GitHub organization account and used the access to upload 10 malicious packages to the npm [...]
-
A massive data breach on the Leak Zone Dark Web forum has resulted in the exposure of sensitive information, including the IP addresses and geographical locations of over 22 million users GalleryA massive data breach on the Leak Zone Dark Web forum has resulted in the exposure of sensitive information, including the IP addresses and geographical locations of over 22 million users
A massive data breach on the Leak Zone Dark Web forum has resulted in the exposure of sensitive information, including the IP addresses and geographical locations of over 22 million users
A significant cybersecurity breach has compromised the privacy of users accessing one of the internet's most infamous illegal marketplaces. On Friday, July 18, cybersecurity firm UpGuard uncovered an unsecured Elasticsearch [...]
New Phishing Scam Imitates Facebook Login Page to Harvest User Credentials
A fast-growing phishing campaign is leveraging a Browser-in-the-Browser (BitB) overlay to mimic Facebook's login page and steal user credentials. The scam uses a misleading CAPTCHA challenge that transforms into a [...]
Stealthy Backdoor Discovered in WordPress Plugins Grants Hackers Long-Term Website Access
A highly sophisticated WordPress malware campaign has been uncovered, exploiting the seldom-monitored mu-plugins (must-use plugins) directory to gain persistent access to compromised sites while avoiding detection by conventional security tools. [...]
Google Launches OSS Rebuild to Detect Malicious Code in Popular Open-Source Software
Google has unveiled a new initiative called OSS Rebuild, aimed at strengthening the security of open-source package ecosystems and defending against software supply chain attacks. “As supply chain attacks increasingly [...]
FHN 
