Dec 30, 2024 | Podcast
https://arxiv.org/pdf/2412.13459 A new study reveals a significant problem with inauthentic “stars” being used to artificially inflate the popularity of scam and malware distribution repositories on GitHub. These fake stars mislead users into trusting...
Dec 27, 2024 | Podcast
https://www.sonatype.com/blog/counterfeit-eslint-and-node-types-libraries-downloaded-thousands-of-times-abuse-pastebin Cybersecurity researchers have discovered a wave of malicious npm packages and Visual Studio Code (VSCode) extensions targeting developers. These...
Dec 26, 2024 | Podcast
https://unit42.paloaltonetworks.com/using-llms-obfuscate-malicious-javascript Cybersecurity researchers from Palo Alto Networks warn that large language models (LLMs) can be used by malicious actors to generate undetectable malware variants. LLMs, despite limitations...
Dec 25, 2024 | Podcast
https://medium.com/@amitassaraf/vscode-extension-trivia-real-or-cake-f729adc9e03e Cybersecurity researchers have discovered a wave of malicious Visual Studio Code extensions designed to steal credentials from developers. These extensions, disguised as legitimate tools...
Dec 24, 2024 | Podcast
https://www.bleepingcomputer.com/news/security/ongoing-phishing-attack-abuses-google-calendar-to-bypass-spam-filters A new phishing campaign is targeting businesses by exploiting Google Calendar to deliver malicious links and bypass spam filters. How the Scam Works:...
Dec 23, 2024 | Podcast
https://www.wsj.com/politics/national-security/us-ban-china-router-tp-link-systems-7d7507e6 The U.S. government is investigating TP-Link, a leading manufacturer of home routers, over concerns about national security risks. This investigation could potentially lead to...
