Open-source security: It’s too easy to upload ‘devastating’ malicious packages, warns Google
Google has detailed some of the work done to find malicious code packages that have been sneaked into bigger open-source software projects. The Package...
Security News
AvosLocker Ransomware Variant Using New Trick to Disable Antivirus Protection
Cybersecurity researchers have disclosed a new variant of the AvosLocker ransomware that disables antivirus solutions to evade detection after breaching target networks by taking...
Chinese Hackers Caught Exploiting Popular Antivirus Products to Target Telecom Sector
A Chinese-aligned cyberespionage group has been observed striking the telecommunication sector in Central Asia with versions of malware such as ShadowPad and PlugX. Cybersecurity...
Dell targets multi-cloud ecosystem with cyber recovery and data analytics
Written by Aimee Chanthadavong, Senior Journalist Aimee Chanthadavong Senior Journalist Since completing a degree in journalism, Aimee has had her fair share of covering...
Unpatched DNS Related Vulnerability Affects a Wide Range of IoT Devices
Cybersecurity researchers have disclosed an unpatched security vulnerability that could pose a serious risk to IoT products. The issue, which was originally reported in...
New Hacker Group Pursuing Corporate Employees Focused on Mergers and Acquisitions
A newly discovered suspected espionage threat actor has been targeting employees focusing on mergers and acquisitions as well as large corporate transactions to facilitate...
GitHub Says Recent Attack Involving Stolen OAuth Tokens Was “Highly Targeted”
Cloud-based code hosting platform GitHub described the recent attack campaign involving the abuse of OAuth access tokens issued to Heroku and Travis-CI as “highly...
How XDR provides protection against advanced exploits
Damage caused by advanced exploits, such as Log4Shell and Spring4Shell, has been widely documented. These came out of nowhere and seemingly crippled many organizations....
How to make SSH even easier to use with config files
Written by Jack Wallen, Contributing Writer Jack Wallen Contributing Writer Jack Wallen is what happens when a Gen Xer mind-melds with present-day snark. Jack...
Which Hole to Plug First? Solving Chronic Vulnerability Patching Overload
According to folklore, witches were able to sail in a sieve, a strainer with holes in the bottom. Unfortunately, witches don’t work in cybersecurity...