The recent attack on the XZ Utils supply chain was not an isolated incident, but rather part of a larger social engineering campaign that sought to compromise numerous JavaScript projects, experts have warned. In a joint blog post, the OpenSource
Author: Sead Fadilpascaroni263
Hacker claims responsibility for Giant Tiger hack, leaks millions of records online
A hacker has claimed responsibility for a recent data breach at Giant Tiger which resulted in the leak of sensitive information belonging to millions of customers. BleepingComputer recently spotted a new thread on an underground forum titled “Giant Tiger Database
This new PowerShell malware looks like it was written by AI
Ever since ChatGPT was first introduced to the world, we kept hearing warnings of how hackers might use it to create malicious code quickly and efficiently. Now, courtesy of cybersecurity researchers Proofpoint, we have real-life proof (pun definitely intended). Earlier
Google Chrome has a new tool to help protect against memory corruption
Google just introduced a new feature for its Chrome browser, which should eliminate, or at least minimize, memory corruption vulnerabilities. It is called V8 Sandbox and described as a “lightweight, in-process sandbox for V8.” For those who are unaware, V8
Retailers are being hit by more malware attacks than ever — with WhatsApp one of the biggest concerns
Organizations and customers in the retail sector are an increasingly popular target for cybercriminals everywhere, due to valuable data such as payment details being readily available. But given its popularity in the vertical, WhatsApp is bound to become a major
Top yacht retailer MarineMax says cyberattack led to major online data breach
MarineMax has confirmed suffering a cyberattack, thought to be ransomware, in which threat actors stole sensitive customer information. In an 8-K form, filed with the Securities and Exchange Commission (SEC) on April 1, the company, one of the leading yacht
Hallucinated packages could be the next big security risk hitting AI developers
The risks of Generative AI tools being able to “hallucinate” – or suggest sources, or tools, that don’t exist – has long been a concern for developers. Now, experts have warned that if a threat actor discovers a Generative AI
JetBrains refuses to reveal details of patched security issues
JetBrains, the company behind the TeamCity CI/CD web application, recently released a patch for the product, addressing no less than 26 vulnerabilities. However, the company was apparently reluctant to reveal any specific details about the JetBrains flaws, raising eyebrows among
PyPI stops signing up new users to try and block malware campaign
Python Package Index (PyPI), the largest repository of Python packages, has once again been forced to suspend new account and new project registrations. Cybersecurity experts from both Checkmarx and Check Point observed a large-scale cyberattack in which threat actors tried
Hot Topic confirms multiple new cyberattacks — customer details and payment info exposed online
Hot Topic customer may have been victims of a cyberattack when unknown actors tried to log into their accounts, the company has confirmed. In a breach notification letter sent to its customers, which was later picked up by BleepingComputer, the