all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

XZ Utils-Like Takeover Attempt Targets the OpenJS Foundation

Add to bookmarks
April 17, 2024, 7:23 p.m. | Jeffrey Burt

Security Boulevard securityboulevard.com


The OpenJS Foundation, which oversees multiple JavaScript projects, thwarted a takeover attempt of at least one project that has echoes of the dangerous backdoor found in versions of the XZ Utils data compression library that failed only because a Microsoft engineer incidentally discovered it. The malicious code targeting XZ Utils was put together over two..


The post XZ Utils-Like Takeover Attempt Targets the OpenJS Foundation appeared first on Security Boulevard.

application security backdoor code compression cybersecurity data data compression data privacy data security devops engineer found foundation industry spotlight javascript library malicious microsoft mobile security network security openjs openjs foundation open source security project projects security boulevard (original) social engineering social - facebook social - linkedin social - x software supply chain security spotlight takeover targeting xz utils

Visit resource

More from securityboulevard.com / Security Boulevard

KapeKa Backdoor: Russian Threat Actor Group’s Recent Attacks an hour ago | securityboulevard.com
actor advanced persistent threat (apt) attacks backdoor +26
MITRE ATT&CK v15: A Deeper Dive into SaaS Identity Compromise 2 hours ago | securityboulevard.com
adversaries amp att attack +22
RSAC 2024 Innovation Sandbox | RAD Security: New Solutions for Cloud-Native Anomaly Detection and Response 6 hours ago | securityboulevard.com
and response anomaly detection benchmark blog +23
External Penetration Testing: Cost, Tools, Steps, & Checklist 8 hours ago | securityboulevard.com
actions applications assets attacker +28
Continuous Risk Assessments Unify Healthcare Cybersecurity 9 hours ago | securityboulevard.com
advice aim assessments axio +18
How to Build a Phishing Playbook Part 4: Testing and Publishing 10 hours ago | securityboulevard.com
build data devops dynamic +11
Who Is Scattered Spider? 11 hours ago | securityboulevard.com
goal hacker hacker groups hackers +6
USPS Phishing Scams Generate Almost as Much Traffic as the Real Site 12 hours ago | securityboulevard.com
akamai bad bad actors cloud +41
Rubrik Sets Cyber Resiliency Course Following IPO 12 hours ago | securityboulevard.com
attack course cyber cyber resiliance +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs