laptop screen displaying headline and subtitle of this article

The Hacker News: Supply chain compromise of Ultralytics AI library results in trojanized versions

In yet another software supply chain attack, it has come to light that two versions of a popular Python artificial intelligence (AI) library named ultralytics were compromised to deliver a cryptocurrency miner.

Read More about The Hacker News: Supply chain compromise of Ultralytics AI library results in trojanized versions
The Hacker News: Supply chain compromise of Ultralytics AI library results in trojanized versions
tablet being held displaying news article

IT Brew: Suspected North Korean group appears to still be hoaxing devs into downloading malware

According to ReversingLabs, the hackers behind the effort are luring developers with fake job offers and instructing them to download PyPI packages with obfuscated malware from GitHub repositories as part of coding tests.

Read More about IT Brew: Suspected North Korean group appears to still be hoaxing devs into downloading malware
IT Brew: Suspected North Korean group appears to still be hoaxing devs into downloading malware
laptop screen displaying headline and subtitle of this article

CISO Series: Cybersecurity News: Lazarus spoofs CapitalOne, Mastercard buys RecordedFuture, WordPress imposes 2FA

New research from Reversing Labs shows that the Lazarus Group is continuing its campaign of tempting targeting developers with malicious software packages on open-source repositories by posing as employees of the financial services firm Capital One.

Read More about CISO Series: Cybersecurity News: Lazarus spoofs CapitalOne, Mastercard buys RecordedFuture, WordPress imposes 2FA
CISO Series: Cybersecurity News: Lazarus spoofs CapitalOne, Mastercard buys RecordedFuture, WordPress imposes 2FA
Back to Top