Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 91 of 28407

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

Posted by Cyberthreat Blog | Nov 11, 2025 | The Hacker News |

Cybersecurity researchers have discovered a malicious npm package named “@acitons/artifact” that typosquats the legitimate “@actions/artifact” package with the intent to target GitHub-owned repositories....

CISO’s Expert Guide To AI Supply Chain Attacks

Posted by Cyberthreat Blog | Nov 11, 2025 | The Hacker News |

AI-enabled supply chain attacks jumped 156% last year. Discover why traditional defenses are failing and what CISOs must do now to protect their organizations. Download the full CISO’s expert guide to AI Supply chain attacks...

OWASP Highlights Supply Chain Risks in New Top 10

Posted by Cyberthreat Blog | Nov 10, 2025 | DARKREADING |

Security misconfiguration jumped to second place while injection vulnerabilities dropped, as...

GlassWorm Returns, Slices Back into VS Code Extensions

Posted by Cyberthreat Blog | Nov 10, 2025 | DARKREADING |

GlassWorm, a self-propagating VS Code malware first found in the Open VSX marketplace, continues...

Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon

Posted by Cyberthreat Blog | Nov 10, 2025 | The Hacker News |

The North Korea-affiliated threat actor known as Konni (aka Earth Imp, Opal Sleet, Osmium, TA406, and Vedalia) has been attributed to a new set of attacks targeting both Android and Windows devices for data theft and remote...

Author: Cyberthreat Blog

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

CISO’s Expert Guide To AI Supply Chain Attacks

OWASP Highlights Supply Chain Risks in New Top 10

GlassWorm Returns, Slices Back into VS Code Extensions

Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon