How Leading CISOs are Getting Budget Approval
It’s budget season. Once again, security is being questioned, scrutinized, or deprioritized. If you’re a CISO or security leader, you’ve […]
How Leading CISOs are Getting Budget Approval Read More »
20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack
Multiple npm packages have been compromised as part of a software supply chain attack after a maintainer’s account was compromised
45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber Espionage
Threat hunters have discovered a set of previously unreported domains, some going back to May 2020, that are associated with
45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber Espionage Read More »
This “insidious” police tech claims to predict crime (Lock and Code S06E18)
This week on the Lock and Code podcast… In the late 2010s, a group of sheriffs out of Pasco County,
This “insidious” police tech claims to predict crime (Lock and Code S06E18) Read More »
GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies
Salesloft has revealed that the data breach linked to its Drift application started with the compromise of its GitHub account.
GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies Read More »
GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms
Cybersecurity researchers have detailed a new sophisticated malware campaign that leverages paid ads on search engines like Google to deliver
GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms Read More »
Bringing Node.js HTTP servers to Cloudflare Workers
We’re making it easier to run your Node.js applications on Cloudflare Workers by adding support for the node:http client and
Bringing Node.js HTTP servers to Cloudflare Workers Read More »
iCloud Calendar infrastructure abused in PayPal phishing campaign
Once again, phishers are targeting PayPal users by abusing existing legitimate infrastructure. Only this time they’re not abusing PayPal’s platform,
iCloud Calendar infrastructure abused in PayPal phishing campaign Read More »
⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More
Cybersecurity never slows down. Every week brings new threats, new vulnerabilities, and new lessons for defenders. For security and IT