Click here to download all references as Bib-File.
2022-08-11 ⋅ sonatype ⋅ PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero |
2022-05-20 ⋅ sonatype ⋅ New 'pymafka' malicious package drops Cobalt Strike on macOS, Windows, Linux Cobalt Strike |
2022-03-17 ⋅ Bleeping Computer ⋅ BIG sabotage: Famous npm package deletes files to protest Ukraine war PeaceNotWar |
2022-02-04 ⋅ Bleeping Computer ⋅ News Corp discloses hack from "persistent" nation state cyber attacks |
2021-06-21 ⋅ sonatype ⋅ Sonatype Catches New PyPI Cryptomining Malware |
2021-04-24 ⋅ Bleeping Computer ⋅ HashiCorp is the latest victim of Codecov supply-chain attack |
2021-03-01 ⋅ sonatype ⋅ Newly Identified Dependency Confusion Packages Target Amazon, Zillow, and Slack; Go Beyond Just Bug Bounties |
2020-12-01 ⋅ sonatype ⋅ There’s a RAT in my code: new npm malware with Bladabindi trojan spotted NjRAT |
2020-11-16 ⋅ sonatype ⋅ Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware |
2020-09-22 ⋅ Bleeping Computer ⋅ Russian hackers use fake NATO training docs to breach govt networks Zebrocy APT28 |
2020-05-28 ⋅ Bleeping Computer ⋅ Microsoft IIS servers hacked by Blue Mockingbird to mine Monero |