Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

gitguardian

The Ultralytics Supply Chain Attack: Connecting the Dots with GitGuardian's Public Monitoring Data

Dec 11, 2024 By Guillaume Valadon In GitGuardian
On December 4, 2024, the Ultralytics Python module was backdoored to deploy a cryptominer. Using GitGuardian’s data, we reconstructed deleted commits, connecting the dots with the initial analysis. This investigation highlights the value of GitGuardian’s data in understanding supply chain attacks.
Read Post
Snyk

Ultralytics AI Pwn Request Supply Chain Attack

Dec 11, 2024 By Stephen Thoemmes In Snyk
The ultralytics supply chain attack occurred in two distinct phases between December 4-7, 2024. In the first phase, two malicious versions were published to PyPI: version 8.3.41 was released on December 4 at 20:51 UTC and remained available for approximately 12 hours until its removal on December 5 at 09:15 UTC. Version 8.3.42 was published shortly after on December 5 at 12:47 UTC and was available for about one hour before removal at 13:47 UTC.
Read Post
knowbe4

Phishing Holds the Top Spot as the Primary Entry Point for Ransomware Attacks

Dec 10, 2024 By Stu Sjouwerman In KnowBe4
New analysis of ransomware attacks shows that phishing is the primary delivery method and organizations need to offer more effective security awareness training to mitigate the threat. Hornet Security’s Q3 2024 Ransomware Attacks Survey report paints a pretty bleak picture of how organizations have fared this year against ransomware attacks. So almost one in five organizations is a victim. According to the survey data, 52.3% of the attacks started with a phishing email.
Read Post
Trustwave

When User Input Lines Are Blurred: Indirect Prompt Injection Attack Vulnerabilities in AI LLMs

Dec 10, 2024 By by Tom Neaves In Trustwave
It was a cold and wet Thursday morning, sometime in early 2006. There I was sitting at the very top back row of an awe-inspiring lecture theatre inside Royal Holloway's Founder’s Building in Egham, Surrey (UK) while studying for my MSc in Information Security. Back then, the lecture in progress was from the software security module. The first rule of software security back then was never to trust user inputs.
Read Post
securitysenses

Cyber Attacks and You: What the South Staffs Water Breach Teaches Us

Dec 10, 2024 By SecuritySenses In SecuritySenses
The recent cyber attack on South Staffs Water has sent ripples across the digital security landscape, highlighting the vulnerabilities that organisations and individuals face in an increasingly connected world. This breach serves as a sobering reminder of the potential risks and repercussions associated with cyber threats. To truly grasp the magnitude of these incidents, it's essential to explore what transpired during the South Staffs Water breach, and subsequent South Staff Water data breach claim.
Read Post
fidelis security

How to Safeguard your Network from DDoS Attacks?

Dec 9, 2024 By Fidelis Security In Fidelis Security
Did you know that during the past year, DDoS attacks have increased by 117%? Industries including retail, shipping, and public relations have been the most impacted by this increase, with businesses seeing significant disruptions during peak shopping seasons like Black Friday. Businesses must understand how to stop these attacks as they become increasingly common and complex.
Read Post
Corelight

It's Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

Dec 6, 2024 By Vince Stoffer In Corelight
Over the past year, several sophisticated cyber-espionage campaigns have grabbed the attention of our industry and challenged defenders and vendors alike with advanced tactics, techniques, and procedures (TTPs). One of the most visible campaigns is Volt Typhoon, named by the Microsoft threat intelligence team in May 2023 and attributed to Chinese state-sponsored threat actors.
Read Post
memcyco

What is Session Hijacking and 8 Ways to Prevent It

Dec 5, 2024 By Charlie Madere In Memcyco
What if there were a way to negate the effectiveness of multi-factor authentication (or even bypass secure login protocols) without ever cracking a password? Session hijacking offers attackers a tempting shortcut to user accounts, bypassing the usual security barriers. In 2022 alone, researchers scouring the shadier corners of the internet (like the dark web) found 22 billion device and session cookie records – each of which could help to enable session hijacking.
Read Post
mend

The @Solana/web3.js Incident: Another Wake-Up Call for Supply Chain Security

Dec 5, 2024 By Tom Abai In Mend
On December 2, 2024, the Solana community faced a significant security incident involving the @solana/web3.js npm package, a critical library for developers building on the Solana blockchain with over 450K weekly downloads. This blog post aims to break down the attack flow, explore how it happened, and discuss the importance of supply chain security.
Read Post
securitysenses

Navigating Cybersecurity Challenges in the Manufacturing Sector

Dec 5, 2024 By SecuritySenses In SecuritySenses
The manufacturing sector has seen a significant transformation in recent years, with increasing reliance on digital systems and interconnected devices to streamline operations. While this shift toward Industry 4.0 has brought efficiency and innovation, it has also introduced a new wave of cybersecurity threats. With cybercriminals targeting vulnerabilities in industrial networks, protecting sensitive data and systems has become a top priority for manufacturers.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.