supply chain attack

Free Download Manager backdoored to serve Linux malware for more than 3 years

Researchers discovered a free download manager site that has been compromised to serve Linux malware to users for more than three years. Researchers from Kaspersky discovered a free download manager site that has been compromised to serve Linux malware. While investigating a set of suspicious domains, the experts identified that the domain in question has […]

The post Free Download Manager backdoored to serve Linux malware for more than 3 years appeared first on Security Affairs.

September 15, 2023
0 comment
Read More >>

Malicious packages in the NPM designed for highly-targeted attacks

Researchers discovered a new set of malicious packages on the npm package manager that can exfiltrate sensitive developer data. On July 31, 2023, Phylum researchers observed the publication of ten different “test” packages on the npm package manager that were developed to exfiltrate sensitive developer source code and other confidential information. All of these packages […]

The post Malicious packages in the NPM designed for highly-targeted attacks appeared first on Security Affairs.

August 4, 2023
0 comment
Read More >>

Experts warn of OSS supply chain attacks against the banking sector

Checkmark researchers have uncovered the first known targeted OSS supply chain attacks against the banking sector. In the first half of 2023, Checkmarx researchers detected multiple open-source software supply chain attacks aimed at the banking sector. These attacks targeted specific components in web assets used by banks, according to the experts the attackers used advanced techniques. […]

The post Experts warn of OSS supply chain attacks against the banking sector appeared first on Security Affairs.

July 24, 2023
0 comment
Read More >>