News

Infosecurity Magazine2h

Attackers Adopting Novel LOTL Techniques to Evade Detection

HP Wolf has reported the use of multiple, uncommon binaries and novel uses of legitimate image files in recent malicious ...
Securities.io21h

NPM Supply-Chain Attack: What Happened and How to Fix It

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...

Forget Tiny11, This Nano11 Script Shrinks Windows 11 Install To Just 2.28 GB

Windows 11 customization utilities are a dime a dozen these days, and more enthusiasts are customizing their installs every ...
Cyber Security Intelligence6h

AI-Powered Phishing Compromises Open-Source Downloads

The attack's genesis traces back to npm maintainer Josh Junon, known online as "qix," who fell victim to an AI-generated phishing email. According to the report, attackers crafted emails that evaded ...