Linking pages
- Spammers flood PyPI with pirated movie links and bogus packages https://www.bleepingcomputer.com/news/security/spammers-flood-pypi-with-pirated-movie-links-and-bogus-packages/ 112 comments
- GitHub fixes bug causing users to log into other accounts https://www.bleepingcomputer.com/news/security/github-fixes-bug-causing-users-to-log-into-other-accounts/ 0 comments
- GitHub - rpgeeganage/audit-node-modules-with-yara: Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles https://github.com/rpgeeganage/audit-node-modules-with-yara 0 comments
- NPM fixes private package names leak, serious authorization bug https://www.bleepingcomputer.com/news/security/npm-fixes-private-package-names-leak-serious-authorization-bug/ 0 comments
- Open source 'Package Analysis' tool finds malicious npm, PyPI packages https://www.bleepingcomputer.com/news/security/open-source-package-analysis-tool-finds-malicious-npm-pypi-packages/ 0 comments
Linked pages
- Researcher hacks over 35 tech firms in novel supply chain attack https://www.bleepingcomputer.com/news/security/researcher-hacks-over-35-tech-firms-in-novel-supply-chain-attack/ 259 comments
- NPM packages posing as speed testers install crypto miners instead https://www.bleepingcomputer.com/news/security/npm-packages-posing-as-speed-testers-install-crypto-miners-instead/ 3 comments
- Auth0 fixes RCE flaw in JsonWebToken library used by 22,000 projects https://www.bleepingcomputer.com/news/security/auth0-fixes-rce-flaw-in-jsonwebtoken-library-used-by-22-000-projects/ 1 comment
- CISA warns of hackers exploiting ZK Java Framework RCE flaw https://www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-exploiting-zk-java-framework-rce-flaw/ 0 comments
- New TPM 2.0 flaws could let hackers steal cryptographic keys https://www.bleepingcomputer.com/news/security/new-tpm-20-flaws-could-let-hackers-steal-cryptographic-keys/ 0 comments
Related searches:
Search whole site: site:bleepingcomputer.com
Search title: Malicious NPM packages target Amazon, Slack with new dependency attacks
See how to search.