Hackers Hijack npm Packages With 2.6 Billion Weekly Downloads in Supply-Chain Attack Summary Attackers injected malware into multiple npm packages after compromising a maintainer’s account via a phishing attack. The…
Signal Rolls Out Encrypted Cloud Backups, Debuts First Subscription Plan at $1.99/Month Summary Signal has started rolling out end-to-end encrypted cloud backups in its latest Android beta. The opt-in feature…
Jaguar Land Rover Extends Shutdown After Cyber Attack Summary Jaguar Land Rover (JLR) has extended the shutdown of its UK and overseas factories after a cyberattack forced the company to…
Plex Suffers Security Incident Exposing User Data and Urging Password Resets Summary Plex has notified customers that an unauthorised third party gained access to one of its databases, exposing email…
‘MostereRAT’ Malware Blends In, Blocks Security Tools Summary Researchers at Fortinet’s FortiGuard Labs have analysed a stealthy Windows campaign using a banking-malware-turned-RAT they call MostereRAT. Delivered via phishing and a…
Salesloft Breached via GitHub Account Compromise Summary A threat actor tracked as UNC6395 compromised Salesloft’s GitHub account earlier this year, downloaded repository data and secrets, and used stolen OAuth tokens…
Salesloft: Hacker broke into systems in March through GitHub account Summary Salesloft says a threat actor gained access to a Salesloft GitHub account from March to June, downloaded content from…
Drift massive attack traced back to loose Salesloft GitHub account Summary New findings from a Mandiant-led investigation show the huge Drift-related supply-chain compromise began with unauthorised access to a Salesloft…
The US government has no idea how many cybersecurity pros it employs Summary The Government Accountability Office (GAO) reviewed workforce data from 23 major US federal agencies (excluding the Department…
WhatsApp’s former security boss claims reporting infosec failings led to ousting Summary Former WhatsApp head of security Attaullah Baig has filed a lawsuit against Meta in Northern California, alleging he…
