Tag: github
-
Blinded by Silence
by
in SecurityNews
Tags: access, antivirus, attack, backdoor, breach, control, credentials, crowdstrike, cybersecurity, data, defense, detection, edr, endpoint, exploit, extortion, firewall, github, malicious, malware, microsoft, mitre, monitoring, network, open-source, phone, ransomware, risk, service, siem, sophos, threat, tool, update, vulnerability, windowsBlinded by Silence: How Attackers Disable EDR Overview Endpoint Detection and Response systems (EDRs) are an essential part of modern cybersecurity strategies. EDR solutions gather and analyze data from endpoints to identify suspicious activities and provide real-time threat visibility. This allows security teams to respond quickly to incidents, investigate threats thoroughly, and mitigate the impact of…
-
Feds Warn of Godzilla Webshell Threats to Health Sector
by
in SecurityNewsStealthy Backdoor Publicly Available on GitHub Can Be Weaponized for Larger Attacks. Godzilla webshell, a Chinese-language backdoor known for its stealth and ability to execute commands and manipulate files, is now publicly available on GitHub, and federal authorities have issued a stern warning to the healthcare sector to prepare for this threat and inevitable cyberattacks.…
-
GitHub developer compromise sought by novel GoIssue phishing tool
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/github-developer-compromise-sought-by-novel-goissue-phishing-tool
-
GoIssue phishing tool targets GitHub developer credentials
by
in SecurityNewsResearchers discovered GoIssue, a new phishing tool targeting GitHub users, designed to extract email addresses from public profiles and launch mass email attacks. Marketed on … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/13/goissue-phishing-tool-targets-github-developer-credentials/
-
‘GoIssue’ Cybercrime Tool Targets GitHub Developers En Masse
by
in SecurityNewsMarketed on a cybercriminal forum, the $700 tool harvests email addresses from public GitHub profiles, priming cyberattackers for further credential theft, malware delivery, OAuth subversion, supply chain attacks, and other corporate breaches. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/goissue-cybercrime-tool-github-developers-en-masse
-
New GoIssue Tool Targets GitHub Devs And Corporate Supply Chains
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36585/New-GoIssue-Tool-Targets-GitHub-Devs-And-Corporate-Supply-Chains.html
-
New Phishing Tool GoIssue Targets GitHub Developers in Bulk Email Campaigns
by
in SecurityNewsCybersecurity researchers are calling attention to a new sophisticated tool called GoIssue that can be used to send phishing messages at scale targeting GitHub users.The program, first marketed by a threat actor named cyberdluffy (aka Cyber D’ Luffy) on the Runion forum earlier this August, is advertised as a tool that allows criminal actors to…
-
Phishing Tool GoIssue Targets Developers on GitHub
by
in SecurityNewsNew phishing tool GoIssue targets GitHub, enabling mass phishing, and has been linked to the GitLoker extortion campaign First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/phishing-goissue-targets-github/
-
New GitLoker-Linked GoIssue Tool Targets GitHub Users for Phishing
by
in SecurityNewsSlashNext researchers have discovered a new, sophisticated phishing tool GoIssue targeting GitHub developers. Learn about its capabilities, the… First seen on hackread.com Jump to article: hackread.com/gitloker-goissue-tool-targets-github-phishing-users/
-
GitLoker Strikes Again: New >>Goissue<< Tool Targets GitHub Developers and Corporate Supply Chains
by
in SecurityNewsGoIssue is a new tool for cybercriminals that allows attackers to extract email addresses from GitHub profiles and send bulk emails to users. The post GitLoker Strikes Again: New >>Goissue
-
Python dethrones JavaScript as the most-used language on GitHub
by
in SecurityNews
Tags: githubFirst seen on theregister.com Jump to article: www.theregister.com/2024/11/05/python_dethrones_javascript_github/
-
Apple’s 45-day certificate proposal: A call to action
by
in SecurityNewsIn a bold move, Apple has published a draft ballot for commentary to GitHub to shorten Transport Layer Security (TLS) certificates down from 398 days to just 45 days by 2027. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/08/apple-shorter-certificate-lifespans-proposal/
-
How To Create a Complete GitHub Backup
by
in SecurityNewsFirst seen on hackread.com Jump to article: hackread.com/how-to-create-a-complete-github-backup/
-
Schwachstelle bei der Authentifizierung – Angreifer können GitHub Enterprise Server übernehmen
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/github-enterprise-server-sicherheitsupdates-a-91b557e3d24a4e91a9d135a1b5b1298a/
-
GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks
A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a wa… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/github-telegram-bots-and-qr-codes.html
-
Researchers Debut AI Tool That Helps Detect Zero-Days
by
in SecurityNewsVulnerability Tool Detected Flaws in OpenAI and Nvidia APIs Used in GitHub Projects. Security researchers have developed an AI tool that can detect re… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/researchers-debut-ai-tool-that-helps-detect-zero-days-a-26575
-
GitHub patches critical vulnerability in its Enterprise Servers
by
in SecurityNewsFirst seen on cyberscoop.com Jump to article: cyberscoop.com/github-enterprise-vulnerability-sso-saml/
-
Github Enterprise Server: Angreifer können Authentifizierung umgehen
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Github-Enterprise-Server-Angreifer-koennen-Authentifizierung-umgehen-9982591.html
-
3,000 >>ghost accounts<< on GitHub spreading malware
In the past, cyber criminals directly distributed malware on GitHub using encrypted scripting code or malicious executables. But now threat actors are… First seen on securityintelligence.com Jump to article: securityintelligence.com/news/3000-ghost-accounts-github-malware/
-
GitHub Issues Urgent Security Advisory on Critical Vulnerability in GitHub Enterprise Server
by
in SecurityNewsGitHub has released a critical security advisory highlighting vulnerabilities that merit immediate action from users of GitHub Enterprise Server (GHES… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/critical-github-vulnerability-advisory/
-
Hackers Hide Remcos RAT in GitHub Repository Comments
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/hackers-hide-remcos-rat-github-comments
-
GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks
A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a wa… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/github-telegram-bots-and-qr-codes.html
-
China-Backed APT Group Culling Thai Government Data
by
in SecurityNewsCeranaKeeper is bombarding Southeast Asia with data exfiltration attacks via file-sharing services such as Pastebin, OneDrive, and GitHub, researchers… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/new-china-backed-apt-group-culling-thai-government-data
-
JFrog and GitHub unveil open source security integrations
by
in SecurityNewsSecure software specialist JFrog is working with code development service GitHub to integrate the onboard capabilities of its Software Supply Chain Pl… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366609897/JFrog-and-GitHub-unveil-new-open-source-security-integrations
-
JFrog connects key software supply chain management dots
by
in SecurityNewsJFrog ties in with GitHub and Nvidia and ships Runtime Security to offer visibility into software supply chains from source code to production and bac… First seen on techtarget.com Jump to article: www.techtarget.com/searchitoperations/news/366610120/JFrog-connects-key-software-supply-chain-management-dots
-
Neue APT-Gruppe CeranaKeeper missbraucht Dropbox und Github
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Neue-APT-Gruppe-CeranaKeeper-missbraucht-Dropbox-und-Github-9961562.html
-
Clever ‘GitHub Scanner’ campaign abusing repos to push malware
by
in SecurityNewsA clever threat campaign is abusing GitHub repositories to distribute malware targeting users who frequent an open source project repository or are su… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/clever-github-scanner-campaign-abusing-repos-to-push-malware/