Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.
The scheme was uncovered by Kaspersky and has been operational since November 2023
This occurs when a private package fetches a similar public one, leading to exploit due to misconfigurations in package managers
Non-profit MITRE says a sophisticated state group breached its network via two chained Ivanti zero-days
Mandiant has confirmed that Sandworm is responsible for many cyber-attacks against Ukraine has close ties with a Russian hacktivist group
The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server
Proofpoint confirmed Kimsuky has directly contacted foreign policy experts since 2023 through seemingly benign email conversations