Weaponizing Open Source Through Job Recruiting | allinfosecnews.com

Oct. 3, 2022, 6:30 p.m. | Ilkka Turunen

Security Boulevard securityboulevard.com

Over the last week, troubling new reports have arisen about state-sponsored threat actors leveraging modified open source applications to compromise employees' machines at technology companies, governments, and non-profit organizations. Microsoft, Mandiant, and Ars Technica all covered the technicalities of the attack type, where bad actors pose as recruiters who target specific individuals as their victims.

The post Weaponizing Open Source Through Job Recruiting appeared first on Security Boulevard.

devzone job log4j malware prevention nexus platform open source recruiting sbn news sonatype lift

More from securityboulevard.com / Security Boulevard

Is Your Password Strong Enough? Brute Force Attack on the Rise! 2 hours ago | securityboulevard.com

access accounts advanced application security +27

USENIX Security ’23 – The Case for Learned Provenance Graph Storage Systems 11 hours ago | securityboulevard.com

access authors case channel +18

BreachRx Gets $6.5 Million to Automate Security Incident Response 12 hours ago | securityboulevard.com

automated incident response breaches breachrx building +34

What is CAS Integration? 13 hours ago | securityboulevard.com

akeyless businesses cybersecurity cybersecurity strategies +8

Brewing Trouble: How Nespresso’s Open Redirect Made Way for a Phishing Frenzy 13 hours ago | securityboulevard.com

attackers attacks blog careers +20

Randall Munroe’s XKCD ‘Pub Trivia’ 13 hours ago | securityboulevard.com

humor randall munroe sarcasm satire +3

Three Ways Organizations Can Overcome the Cybersecurity Skills Gap 14 hours ago | securityboulevard.com

can critical cybersecurity cybersecurity jobs +13

2024 Pen Testing Report 15 hours ago | securityboulevard.com

defense digital digital defense guides +6

A Step-by-Step Guide to Securely Upgrading Your EKS Clusters 15 hours ago | securityboulevard.com

agile best practices cloud cloud computing +15

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

L2-Network Security Administrator

@ Kyndryl | KIN51515 Mumbai (KIN51515) We Work

View on infosec-jobs.com

Head of Cybersecurity Advisory and Architecture

@ CMA CGM | Marseille, FR

View on infosec-jobs.com

Systems Engineers/Cyber Security Engineers/Information Systems Security Engineer

@ KDA Consulting Inc | Herndon, Virginia, United States

View on infosec-jobs.com

R&D DevSecOps Staff Software Development Engineer 1

@ Sopra Steria | Noida, Uttar Pradesh, India

View on infosec-jobs.com