Open VSX rotates access tokens used in supply-chain malware attack

bleepingcomputer.com - 02/Nov 15:09

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to...

Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack

itsecuritynews.info - 24/Oct 08:04

Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry...

Open VSX Registry Addresses Leaked Tokens and Malicious Extensions in Wake of Security Scare

itsecuritynews.info - 06:34

The Open VSX Registry and the Eclipse Foundation have completed their investigation into a significant security incident involving exposed developer...

Open VSX Registry Addresses Leaked Tokens and Malicious Extensions in Wake of Security Scare

itsecuritynews.info - 06:34

The Open VSX Registry and the Eclipse Foundation have completed their investigation into a significant security incident involving exposed developer...

Malicious NuGet Packages Pose as Nethereum, Steal Crypto Wallet Keys

itsecuritynews.info - 24/Oct 08:05

Socket’s Threat Research Team has uncovered a sophisticated supply chain attack targeting cryptocurrency developers through the NuGet package...

Fake Solidity VSCode extension on Open VSX backdoors developers

bleepingcomputer.com - 03/Nov 20:50

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum...

Fake Solidity VSCode extension on Open VSX backdoors developers

bleepingcomputer.com - 03/Nov 20:50

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum...

GlassWorm Malware Exploits Invisible Unicode to Infect VS Code Extensions

itsecuritynews.info - 28/Oct 17:04

A major and ongoing supply-chain attack is currently targeting developers through the OpenVSX and Microsoft Visual Studio Code (VS Code) extension...

GlassWorm Malware Exploits Invisible Unicode to Infect VS Code Extensions

itsecuritynews.info - 28/Oct 17:04

A major and ongoing supply-chain attack is currently targeting developers through the OpenVSX and Microsoft Visual Studio Code (VS Code) extension...

New Malware Attack Using Variable Functions and Cookies to Evade and Hide Their Malicious Scripts

itsecuritynews.info - 25/Oct 02:05

A sophisticated malware campaign targeting WordPress sites has emerged, utilizing PHP variable functions and cookie-based obfuscation to evade...

Rubriques :

Open VSX rotates access tokens used in supply-chain malware attack

Articles similaires

Open VSX rotates access tokens used in supply-chain malware attack

Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack

Open VSX Registry Addresses Leaked Tokens and Malicious Extensions in Wake of Security Scare

Open VSX Registry Addresses Leaked Tokens and Malicious Extensions in Wake of Security Scare

Malicious NuGet Packages Pose as Nethereum, Steal Crypto Wallet Keys

Fake Solidity VSCode extension on Open VSX backdoors developers

Fake Solidity VSCode extension on Open VSX backdoors developers

GlassWorm Malware Exploits Invisible Unicode to Infect VS Code Extensions

GlassWorm Malware Exploits Invisible Unicode to Infect VS Code Extensions

New Malware Attack Using Variable Functions and Cookies to Evade and Hide Their Malicious Scripts

Les derniers communiqués