Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT
Cybersecurity researchers have discovered a malicious package on the npm package registry…
Cryptocurrency Miner Found in PyPI Versions
Dec 07, 2024Ravie LakshmananSupply Chain Attack / Cryptocurrency In yet another software…
Researchers Uncover Flaws in Popular Open-Source Machine Learning Frameworks
Dec 06, 2024Ravie LakshmananArtificial Intelligence / Vulnerability Cybersecurity researchers have disclosed multiple…
Researchers Uncover Backdoor in Solana’s Popular Web3.js npm Library
Dec 04, 2024Ravie LakshmananSupply Chain Attack Cybersecurity researchers are alerting to a…
From Logs to Runtime Protection
Nov 28, 2024The Hacker NewsCloud Security / Threat Detection Serverless environments, leveraging…
Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers
Nov 27, 2024Ravie LakshmananVulnerability / Software Security A critical security flaw impacting…
PyPI Python Library “aiocpa” Found Exfiltrating Crypto Keys via Telegram Bot
Nov 25, 2024Ravie LakshmananSoftware Supply Chain / Malware The administrators of the…
Malicious NPM Packages Target Roblox Users with Data-Stealing Malware
Nov 08, 2024Ravie LakshmananOpen Source / Malware A new campaign has targeted…
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
Nov 04, 2024Ravie LakshmananVulnerability / Cyber Threat Cybersecurity researchers have disclosed six…