Half of npm Packages Vulnerable to Old-School Weapon: the ‘Shift’ Key
Since 2017, hackers have been able to mimic legitimate packages on Node Package Manager (npm) by simply removing the capital letters in their titles. According Read More
May 2023
North Korean APT Uses Malicious Microsoft OneDrive Links to Spread New Malware
North Korean cyber espionage group Kimsuky has expanded its attack arsenal with a new spear-phishing campaign that uses Microsoft OneDrive links in documents armed with Read More
Legitimate Software Abuse: A Disturbing Trend in Ransomware Attacks
When discussing ransomware groups, too often the focus is on their names, such as Noberus, Royal, and AvosLocker, rather than the tactics, techniques, and procedures Read More
Browser Isolation Adapts to Remote Work, Greater Cloud Usage
Browser isolation technologies are gaining popularity as a way to lock down companies’ business processes, as workers — especially remote workers — spend more time Read More
1M NextGen Patient Records Compromised in Data Breach
A database containing the personal information of more than 1 million people was stolen from NextGen Healthcare, Inc., a provider of cloud-based healthcare technology. NextGen Read More