Sonatype releases Advanced Development Pack with next-gen DevSecOps intelligence
Fulton, MD – Sonatype, the company that scales DevOps through open source governance and software supply chain automation, today unveils its...
Office 365 phishing page evades detection using Google captcha
A newly discovered phishing campaign makes the recipient solve captchas in an effort to both add some legitimacy to itself...
Slack is down and lagging for users across the world
Slack, the widely popular workplace messaging app has stopped working for multiple users across the globe or at least experiencing...
Gravatar API lets you scrape millions of user profiles
Yesterday, I reported on BleepingComputer how Gravatar API makes it easy for web scrapers and bots to automatically enumerate Gravatar...
Telegram app used by malware to infiltrate online stores
An ongoing trend observed by cybersecurity analysts and malware researchers reveals Telegram messaging service is being abused by malware authors...
NodeJS malware caught exfiltrating IPs, username, and device information on GitHub
Multiple NodeJS packages laden with malicious code have been spotted on npm registry. These "typosquatting" packages served no purpose other...
Can a Windows wallpaper really hijack your Microsoft account password?
This month security researcher bohops demonstrated a credential harvesting trick that uses Windows theme files. Setting a Windows wallpaper location to a...
A malware alert left hundreds of Bank of America customers panicking
According to reports, hundreds of Bank of America customers had trouble accessing their bank accounts yesterday due to Avast and...
Apple SSH privacy bug “exploited at large” remains unpatched after 2 years
A privacy bug lurking around in Apple Mac OS X since at least 2018 continues to remain unpatched. The severity...
Changing careers? Consider becoming a cybersecurity pro
Guest post byArtur Meyster of Career Karma Do you spend your workdays gazing out the window, daydreaming about a different...