all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Complex Supply Chain Attack Targets GitHub Developers

Add to bookmarks
March 26, 2024, 6:42 p.m. | Jeffrey Burt

Security Boulevard securityboulevard.com


Unidentified threat actors used multiple tactics to launch a sophisticated software supply-chain campaign targeting developers on the GitHub platform, including members of the popular Top.gg community that includes more than 170,000 members. The attackers used a range of tactics and techniques, from leveraging stolen browser cookies to take over accounts to contributing malicious code with..


The post Complex Supply Chain Attack Targets GitHub Developers appeared first on Security Boulevard.

accounts attack attackers browser campaign cloud security community cookies cybersecurity data security developers devops featured github identity & access incident response industry spotlight launch malicious malware network security platform popular security boulevard (original) social - facebook social - linkedin social - x software software supply chain attack spotlight stolen supply supply chain supply chain attack tactics targeting techniques threat threat actors

Visit resource

More from securityboulevard.com / Security Boulevard

What is General Data Protection Regulation Act (GDPR)? 5 hours ago | securityboulevard.com
act adoption center challenges +32
Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness 15 hours ago | securityboulevard.com
automation awareness chief cloud +28
USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 18 hours ago | securityboulevard.com
access authors conference events +15
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656) 20 hours ago | securityboulevard.com
ant application customers cve +21
Understanding Cybersecurity Vulnerabilities 20 hours ago | securityboulevard.com
advice attacks can cybersecurity +12
Bridging the Gap: Uniting Development and AppSec 21 hours ago | securityboulevard.com
application security appsec aspm bridging the gap +20
Open-Source Software Security 22 hours ago | securityboulevard.com
blog blog post cloud cloud-native +14
USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android … 22 hours ago | securityboulevard.com
access android authors conference +20
How to secure GraphQL APIs: challenges and best practices 1 day ago | securityboulevard.com
apis api security best practices challenges +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)

@ WWC Global | Reston, Virginia, United States
View on infosec-jobs.com

Security Architect (DevSecOps)

@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium
View on infosec-jobs.com

Infrastructure Security Architect

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Contract Penetration Tester

@ Evolve Security | United States - Remote
View on infosec-jobs.com

Senior Penetration Tester

@ DigitalOcean | Canada
View on infosec-jobs.com
View more jobs