all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Topic: phylum

Follow topic RSS
Q1 2024 Evolution of Software Supply Chain Security Report 4 days, 1 hour ago | blog.phylum.io
cve cves exploited in the wild +17
Popular Rust Crate liblzma-sys Compromised with XZ Utils Backdoor Files 1 week ago | thehackernews.com
backdoor compromised date developers +10
Rust crate shipping xz backdoor 1 week, 1 day ago | blog.phylum.io
attack backdoor compression engineer +11
PyPI Malicious Package Uploads Used To Target Developers 1 week, 3 days ago | securityboulevard.com
article checkmarx check point countermeasures +29
Malicious npm Package Caught Hijacking ERC20 Contracts to Drain USDT 2 weeks, 6 days ago | blog.phylum.io
automated bills called caught +24
Typosquatting Campaign Targets Python Developers 3 weeks, 1 day ago | blog.phylum.io
attack attackers automated big +14
An Introduction to Open-Source Software Supply Chain Risk 4 weeks, 1 day ago | blog.phylum.io
authors blog campaigns developers +21
Report: Cyberattacks Against Software Supply Chains Become More Targeted 1 month, 3 weeks ago | securityboulevard.com
analytics & intelligence application security cyberattacks cybersecurity +23
North Korean Hackers Targeting Developers with Malicious npm Packages 1 month, 3 weeks ago | thehackernews.com
async data developers fake +21
Windows Malware Dropped From Fake Software Developers Job Offers Scheme 1 month, 3 weeks ago | cybersecuritynews.com
alto campaign collaboration cybersecurity +23
Dormant PyPI Package Compromised to Spread Nova Sentinel Malware 1 month, 3 weeks ago | thehackernews.com
april called compromised django +24
Dormant PyPI Package Updated to Deploy NovaSentinel Stealer 1 month, 3 weeks ago | blog.phylum.io
april automated deploy detection +15
Smuggling Malware in Test Code 1 month, 4 weeks ago | blog.phylum.io
attacker blog blog post code +18
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain | News - … 2 months, 2 weeks ago | www.youtube.com
co-founder cso cybersecurity elephant +16
Developers Hold the New Crown Jewels. Are They Properly Protected? 2 months, 3 weeks ago | www.cyberdefensemagazine.com
aaron ceo cyber cyber defense +14
Q4 2023 Evolution of Software Supply Chain Security Report 2 months, 4 weeks ago | blog.phylum.io
attack code current digital +21
npm Package Found Delivering Sophisticated RAT 3 months ago | blog.phylum.io
actor automated campaign detection +15
Phylum integrates with Sumo Logic to identify software supply chain attacks 4 months, 1 week ago | www.helpnetsecurity.com
app attacks authors availability +27
Encrypted npm Packages Found Targeting Major Financial Institution 4 months, 1 week ago | blog.phylum.io
actor can encrypted financial +16
Crypto-Themed npm Packages Found Delivering Stealthy Malware 5 months, 2 weeks ago | blog.phylum.io
attack attack chain automated called +17
Dozens of npm Packages Caught Attempting to Deploy Reverse Shell 5 months, 2 weeks ago | blog.phylum.io
alerting automated campaign caught +17
Obfuscated PyPI Packages Purporting to be i18n Libraries Actually Stealing Telegram Data 5 months, 2 weeks ago | blog.phylum.io
application claim code data +21
IAmReboot: Malicious NuGet packages exploit loophole in MSBuild integrations 5 months, 2 weeks ago | malware.news
august campaign connections coordinated +13
IAmReboot: Malicious NuGet packages exploit loophole in MSBuild integrations 5 months, 2 weeks ago | blog.reversinglabs.com
app sec & supply chain security august campaign connections +15
Q3 2023 Evolution of Software Supply Chain Security Report 6 months ago | blog.phylum.io
attacks developers ecosystems golang +24
Malicious NuGet Package Targeting .NET Developers with SeroXen RAT 6 months, 1 week ago | thehackernews.com
access build called developers +22
Phylum Discovers SeroXen RAT in Typosquatted NuGet Package 6 months, 1 week ago | blog.phylum.io
automated build config detection +14
Cloud Provider Credentials Targeted in New PyPI Malware Campaign 6 months, 1 week ago | blog.phylum.io
automated campaign cloud cloud provider +17
The Power of the Pod 6 months, 2 weeks ago | blog.phylum.io
apple insights and resources listening listening in +5
It doesn't take an APT to hack devs via a packaging ecosystem 6 months, 2 weeks ago | dev.to
apt campaign code definition +16
Sensitive Data Exfiltration Campaign Targets npm and PyPI 6 months, 3 weeks ago | blog.phylum.io
attack campaign complexity continue +20
Large Typosquat Campaign Targeting React and Angular 6 months, 3 weeks ago | blog.phylum.io
angular campaign ecosystem large +10
Nascent Malware Attacking npm, PyPI, and RubyGems Developers 7 months, 1 week ago | gbhackers.com
campaigns code cyber security developers +16
Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers 7 months, 2 weeks ago | blog.phylum.io
campaign campaigns developers malicious +13
Developers Beware: Malicious Rust Libraries Caught Transmitting OS Info to Telegram Channel 7 months, 3 weeks ago | thehackernews.com
attacks august caught channel +21
Signs of Malware Attack Targeting Rust Developers Found on Crates.io 7 months, 3 weeks ago | www.securityweek.com
application security attack developers found +9
North Korean Hackers Suspected in New Wave of Malicious npm Packages 8 months ago | thehackernews.com
attack campaign developers hacker +23
Sensitive developer data targeted by new malicious NPM packages 8 months, 1 week ago | malware.news
article data data exfiltration developer +16
Sensitive developer data targeted by new malicious NPM packages 8 months, 1 week ago | www.scmagazine.com
cloud security data data exfiltration developer +14
Stealthy npm Malware Exposes Developer Data 8 months, 2 weeks ago | www.infosecurity-magazine.com
attack data developer development +4
Malicious packages in the NPM designed for highly-targeted attacks 8 months, 2 weeks ago | securityaffairs.co
attacks breaking news code confidential +24
Malicious npm Packages Found Exfiltrating Sensitive Data from Developers 8 months, 2 weeks ago | thehackernews.com
cybersecurity data developer developers +18
Software Supply Chain Do's and Don'ts 11 months, 3 weeks ago | www.bankinfosecurity.com
co-founder cso don ecosystems +13
Phylum Adds Open Policy Agent to Open Source Analysis Engine 11 months, 4 weeks ago | www.securityweek.com
agent analysis enforcement engine +15
Phylum adds OPA and continuous reporting to its policy engine 1 year ago | www.helpnetsecurity.com
agent code compliance continuous +27
Malicious Python Package uses Unicode support to evade detection 1 year ago | securityaffairs.co
breaking news data detection evade +24
Experts discover over 451 clipper malware-laced packages in the PyPI repository 1 year, 2 months ago | securityaffairs.co
breaking news clipper clipper malware cryptocurrency +22
Python Developers Beware: Clipper Malware Found in 450+ PyPI Packages! 1 year, 2 months ago | thehackernews.com
campaign clipper clipper malware developer +24
PyPI Users Targeted With PoweRAT Malware 1 year, 3 months ago | www.securityweek.com
attack backdoor cybercrime information +22
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls 1 year, 3 months ago | thehackernews.com
campaign cloudflare code december +20
Phylum Automated Vulnerability Reachability strengthens software supply chain security 1 year, 4 months ago | www.helpnetsecurity.com
automated industry news phylum security +7

Items published with this topic over the last 90 days.

Latest

Q1 2024 Evolution of Software Supply Chain Security Report 4 days, 1 hour ago | blog.phylum.io
cve cves exploited in the wild +17
Popular Rust Crate liblzma-sys Compromised with XZ Utils Backdoor Files 1 week ago | thehackernews.com
backdoor compromised date developers +10
Rust crate shipping xz backdoor 1 week, 1 day ago | blog.phylum.io
attack backdoor compression engineer +11
PyPI Malicious Package Uploads Used To Target Developers 1 week, 3 days ago | securityboulevard.com
article checkmarx check point countermeasures +29
Malicious npm Package Caught Hijacking ERC20 Contracts to Drain USDT 2 weeks, 6 days ago | blog.phylum.io
automated bills called caught +24
Typosquatting Campaign Targets Python Developers 3 weeks, 1 day ago | blog.phylum.io
attack attackers automated big +14
An Introduction to Open-Source Software Supply Chain Risk 4 weeks, 1 day ago | blog.phylum.io
authors blog campaigns developers +21
Report: Cyberattacks Against Software Supply Chains Become More Targeted 1 month, 3 weeks ago | securityboulevard.com
analytics & intelligence application security cyberattacks cybersecurity +23
North Korean Hackers Targeting Developers with Malicious npm Packages 1 month, 3 weeks ago | thehackernews.com
async data developers fake +21
Windows Malware Dropped From Fake Software Developers Job Offers Scheme 1 month, 3 weeks ago | cybersecuritynews.com
alto campaign collaboration cybersecurity +23
Dormant PyPI Package Compromised to Spread Nova Sentinel Malware 1 month, 3 weeks ago | thehackernews.com
april called compromised django +24
Dormant PyPI Package Updated to Deploy NovaSentinel Stealer 1 month, 3 weeks ago | blog.phylum.io
april automated deploy detection +15
Smuggling Malware in Test Code 1 month, 4 weeks ago | blog.phylum.io
attacker blog blog post code +18
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain | News - … 2 months, 2 weeks ago | www.youtube.com
co-founder cso cybersecurity elephant +16
Developers Hold the New Crown Jewels. Are They Properly Protected? 2 months, 3 weeks ago | www.cyberdefensemagazine.com
aaron ceo cyber cyber defense +14
Q4 2023 Evolution of Software Supply Chain Security Report 2 months, 4 weeks ago | blog.phylum.io
attack code current digital +21
npm Package Found Delivering Sophisticated RAT 3 months ago | blog.phylum.io
actor automated campaign detection +15
Phylum integrates with Sumo Logic to identify software supply chain attacks 4 months, 1 week ago | www.helpnetsecurity.com
app attacks authors availability +27
Encrypted npm Packages Found Targeting Major Financial Institution 4 months, 1 week ago | blog.phylum.io
actor can encrypted financial +16
Crypto-Themed npm Packages Found Delivering Stealthy Malware 5 months, 2 weeks ago | blog.phylum.io
attack attack chain automated called +17
Dozens of npm Packages Caught Attempting to Deploy Reverse Shell 5 months, 2 weeks ago | blog.phylum.io
alerting automated campaign caught +17
Obfuscated PyPI Packages Purporting to be i18n Libraries Actually Stealing Telegram Data 5 months, 2 weeks ago | blog.phylum.io
application claim code data +21
IAmReboot: Malicious NuGet packages exploit loophole in MSBuild integrations 5 months, 2 weeks ago | malware.news
august campaign connections coordinated +13
IAmReboot: Malicious NuGet packages exploit loophole in MSBuild integrations 5 months, 2 weeks ago | blog.reversinglabs.com
app sec & supply chain security august campaign connections +15
Q3 2023 Evolution of Software Supply Chain Security Report 6 months ago | blog.phylum.io
attacks developers ecosystems golang +24
Malicious NuGet Package Targeting .NET Developers with SeroXen RAT 6 months, 1 week ago | thehackernews.com
access build called developers +22
Phylum Discovers SeroXen RAT in Typosquatted NuGet Package 6 months, 1 week ago | blog.phylum.io
automated build config detection +14
Cloud Provider Credentials Targeted in New PyPI Malware Campaign 6 months, 1 week ago | blog.phylum.io
automated campaign cloud cloud provider +17
The Power of the Pod 6 months, 2 weeks ago | blog.phylum.io
apple insights and resources listening listening in +5
It doesn't take an APT to hack devs via a packaging ecosystem 6 months, 2 weeks ago | dev.to
apt campaign code definition +16
Sensitive Data Exfiltration Campaign Targets npm and PyPI 6 months, 3 weeks ago | blog.phylum.io
attack campaign complexity continue +20
Large Typosquat Campaign Targeting React and Angular 6 months, 3 weeks ago | blog.phylum.io
angular campaign ecosystem large +10
Nascent Malware Attacking npm, PyPI, and RubyGems Developers 7 months, 1 week ago | gbhackers.com
campaigns code cyber security developers +16
Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers 7 months, 2 weeks ago | blog.phylum.io
campaign campaigns developers malicious +13
Developers Beware: Malicious Rust Libraries Caught Transmitting OS Info to Telegram Channel 7 months, 3 weeks ago | thehackernews.com
attacks august caught channel +21
Signs of Malware Attack Targeting Rust Developers Found on Crates.io 7 months, 3 weeks ago | www.securityweek.com
application security attack developers found +9
North Korean Hackers Suspected in New Wave of Malicious npm Packages 8 months ago | thehackernews.com
attack campaign developers hacker +23
Sensitive developer data targeted by new malicious NPM packages 8 months, 1 week ago | malware.news
article data data exfiltration developer +16
Sensitive developer data targeted by new malicious NPM packages 8 months, 1 week ago | www.scmagazine.com
cloud security data data exfiltration developer +14
Stealthy npm Malware Exposes Developer Data 8 months, 2 weeks ago | www.infosecurity-magazine.com
attack data developer development +4
Malicious packages in the NPM designed for highly-targeted attacks 8 months, 2 weeks ago | securityaffairs.co
attacks breaking news code confidential +24
Malicious npm Packages Found Exfiltrating Sensitive Data from Developers 8 months, 2 weeks ago | thehackernews.com
cybersecurity data developer developers +18
Software Supply Chain Do's and Don'ts 11 months, 3 weeks ago | www.bankinfosecurity.com
co-founder cso don ecosystems +13
Phylum Adds Open Policy Agent to Open Source Analysis Engine 11 months, 4 weeks ago | www.securityweek.com
agent analysis enforcement engine +15
Phylum adds OPA and continuous reporting to its policy engine 1 year ago | www.helpnetsecurity.com
agent code compliance continuous +27
Malicious Python Package uses Unicode support to evade detection 1 year ago | securityaffairs.co
breaking news data detection evade +24
Experts discover over 451 clipper malware-laced packages in the PyPI repository 1 year, 2 months ago | securityaffairs.co
breaking news clipper clipper malware cryptocurrency +22
Python Developers Beware: Clipper Malware Found in 450+ PyPI Packages! 1 year, 2 months ago | thehackernews.com
campaign clipper clipper malware developer +24
PyPI Users Targeted With PoweRAT Malware 1 year, 3 months ago | www.securityweek.com
attack backdoor cybercrime information +22
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls 1 year, 3 months ago | thehackernews.com
campaign cloudflare code december +20
Phylum Automated Vulnerability Reachability strengthens software supply chain security 1 year, 4 months ago | www.helpnetsecurity.com
automated industry news phylum security +7

Topic trend (last 90 days)

Top (last 7 days)

Q1 2024 Evolution of Software Supply Chain Security Report 4 days, 1 hour ago | blog.phylum.io
cve cves exploited in the wild +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

SOC Cyber Threat Intelligence Expert

@ Amexio | Luxembourg, Luxembourg, Luxembourg
View on infosec-jobs.com

Systems Engineer - SecOps

@ Fortinet | Dubai, Dubai, United Arab Emirates
View on infosec-jobs.com

Ingénieur Cybersécurité Gouvernance des projets AMR H/F

@ ASSYSTEM | Lyon, France
View on infosec-jobs.com

Senior DevSecOps Consultant

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs