Click here to download all references as Bib-File.•
| 2022-08-11
⋅
sonatype
⋅
PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero |
| 2022-05-20
⋅
sonatype
⋅
New 'pymafka' malicious package drops Cobalt Strike on macOS, Windows, Linux Cobalt Strike |
| 2022-03-17
⋅
Bleeping Computer
⋅
BIG sabotage: Famous npm package deletes files to protest Ukraine war PeaceNotWar |
| 2022-02-04
⋅
Bleeping Computer
⋅
News Corp discloses hack from "persistent" nation state cyber attacks |
| 2021-06-21
⋅
sonatype
⋅
Sonatype Catches New PyPI Cryptomining Malware |
| 2021-04-24
⋅
Bleeping Computer
⋅
HashiCorp is the latest victim of Codecov supply-chain attack |
| 2021-03-01
⋅
sonatype
⋅
Newly Identified Dependency Confusion Packages Target Amazon, Zillow, and Slack; Go Beyond Just Bug Bounties |
| 2020-12-01
⋅
sonatype
⋅
There’s a RAT in my code: new npm malware with Bladabindi trojan spotted NjRAT |
| 2020-11-16
⋅
sonatype
⋅
Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware |
| 2020-09-22
⋅
Bleeping Computer
⋅
Russian hackers use fake NATO training docs to breach govt networks Zebrocy APT28 |
| 2020-05-28
⋅
Bleeping Computer
⋅
Microsoft IIS servers hacked by Blue Mockingbird to mine Monero |