NPM nukes NodeJS malware opening Windows, Linux reverse shells

NPM has removed multiple packages hosted on its repository this week that established connection to remote servers and exfiltrated user data. These 4 packages had collected over 1,000 total downloads over the course of the last few months up until being removed by NPM yesterday. The four packages are: plutov-slack-client - claims to be a … Continue reading NPM nukes NodeJS malware opening Windows, Linux reverse shells

Crypto-mining malware adds Linux password stealing capability

The TeamTNT cybercrime group has recently updated its crypto-mining worm with password-stealing capabilities and with an additional network scanner to make it easier to spread to other vulnerable devices. While known mostly for actively targeting Docker instances to use compromised systems for unauthorized Monero (XMR) mining, the group now shifted their tactics by upgrading their … Continue reading Crypto-mining malware adds Linux password stealing capability

Open Source Securitys Top Threat and What To Do About It

With open source developers regularly churning out new tools, the risk landscape has become too fragmented to properly monitor. Ninety-nine percent of enterprise codebases contain open source components, according to a recent study. But amid that overwhelming adoption, a hazard has emerged: Organizations have lost visibility of the plethora of open source components being used … Continue reading Open Source Securitys Top Threat and What To Do About It

Samsung fixes critical Android flaws with September updates

Samsung has started rolling out Android's September security updates to mobile devices to fix critical security vulnerabilities in the operating system and enhance overall features on the devices. This week Android published their September 2020 security updates, which includes numerous security patches for critical vulnerabilities impacting the latest devices. As observed by BleepingComputer, Samsung Galaxy … Continue reading Samsung fixes critical Android flaws with September updates

Cisco engineer resigns then nukes 16k WebEx accounts, 456 VMs

A former Cisco employee pleaded guilty to accessing the company's cloud infrastructure in 2018, five months after resigning, to deploy code that led to the shut down of more than 16,000 WebEx Teams accounts and the deletion of 456 virtual machines. According to a plea agreement filed on July 30, 2020, 30-year-old Sudhish Kasaba Ramesh … Continue reading Cisco engineer resigns then nukes 16k WebEx accounts, 456 VMs