Search
21 results for “SocketSecurity”
-
RE: https://fosstodon.org/@SocketSecurity/116454222329703786
@bitwarden is this true?
-
The Hidden Blast Radius of the Axios Compromise, by @ahmadnassri (@SocketSecurity):
https://socket.dev/blog/hidden-blast-radius-of-the-axios-compromise
-
Node.js TSC Votes to Stop Distributing Corepack, by @sarahgooding (@SocketSecurity):
https://socket.dev/blog/node-js-tsc-votes-to-stop-distributing-corepack
-
New.
Socket: TeamPCP and BreachForums Launch $1,000 Contest for Supply Chain Attacks https://socket.dev/blog/teampcp-supply-chain-attack-contest @SocketSecurity #infosec
-
Posted yesterday, if you missed this:
Socket: 5 Malicious NuGet Packages Impersonate Chinese UI Libraries to Distribute Crypto Wallet and Credential Stealer https://socket.dev/blog/5-malicious-nuget-packages-impersonate-chinese-ui-libraries @SocketSecurity #infosec #threatresearch #Windows
-
TC39 Advances “Array.fromAsync”, “Error.isError”, and Explicit Resource Management to Stage 4, by @sarahgooding (@SocketSecurity):
-
New on the BoxyHQ blog - Progress and Challenges In Securing The Web Ecosystem in 2023 - A Year in Review by BoxyHQ 📦 https://boxyhq.com/blog/boxyhq-2023-year-in-review #opensource #saml #sso #news #securingtheweb #mvsp - Notable mentions: @osi @SocketSecurity @fidoalliance
-
New on the BoxyHQ blog - Progress and Challenges In Securing The Web Ecosystem in 2023 - A Year in Review by BoxyHQ 📦 https://boxyhq.com/blog/boxyhq-2023-year-in-review #opensource #saml #sso #news #securingtheweb #mvsp - Notable mentions: @osi @SocketSecurity @fidoalliance
-
🚨 Socket detected malicious activity in newly published versions of node-ipc, an npm package with 822K weekly downloads.
Affected versions:
[email protected]
[email protected]
[email protected]Socket’s AI scanner flagged the malware within ~3 minutes of publication.
Early analysis shows obfuscated stealer/backdoor behavior, including host fingerprinting, local file enumeration, payload wrapping, and attempted exfiltration.
-
cc: @campuscodi
-
🐘 @packagist is urging #PHP projects to update Composer after a GitHub token format change caused some GitHub Actions tokens to be exposed in CI logs.
GitHub has rolled back the token change for now, but affected projects still need to update Composer.
https://socket.dev/blog/packagist-urges-immediate-composer-update
-
🚨 We detected malicious #dYdX client packages published to npm and PyPI after a maintainer account compromise, enabling wallet theft and remote code execution.
Full investigation → https://socket.dev/blog/malicious-dydx-packages-published-to-npm-and-pypi #crypto
-
🚨 New Research: Threat actors compromised four #OpenVSX extensions, pushed malicious updates that load encrypted malware, evade Russian locales, and fetch C2 instructions via #Solana memos, leading to macOS credential and wallet theft.
Full analysis: https://socket.dev/blog/glassworm-loader-hits-open-vsx-via-suspected-developer-account-compromise
-
🚨 New from the Socket Threat Research Team: 5 coordinated Chrome extensions hijack sessions and block security controls in enterprise HR and ERP platforms like Workday and NetSuite.
Full report → https://socket.dev/blog/5-malicious-chrome-extensions-enable-session-hijacking #CyberSecurity #EnterpriseSecurity
-
🚨 New research: A malicious Chrome Web Store extension is stealing newly created #MEXC API keys and exfiltrating them to a Telegram bot, enabling full account takeover with trading and withdrawal rights.
Details → https://socket.dev/blog/malicious-chrome-extension-steals-mexc-api-keys #crypto
-
🚨 New threat research: An impostor #NuGet package typosquatted a popular .NET tracing library and its author, using homoglyph tricks to blend in, then exfiltrated #Stratis wallet JSON and passwords to a Russian IP address.
Full report →
https://socket.dev/blog/malicious-nuget-package-typosquats-popular-net-tracing-library #dotnet -
🚨 Socket’s Threat Research Team uncovered a malicious Chrome extension posing as an #Ethereum wallet. It steals seed phrases by encoding them into #Sui transactions and leaks them on-chain - no C2 needed.
→ https://socket.dev/blog/malicious-chrome-extension-exfiltrates-seed-phrases #crypto
-
📦 Our latest investigation of Black Basta's leaked chats shows how they were plotting to exploit open source package registries to deploy ransomware, plus our analysis of #ransomware & wiperware packages already in the wild.
https://socket.dev/blog/black-basta-dependency-confusion-ambitions-and-ransomware-in-open-source-ecosystems #BlackBasta #CyberSecurity
-
The National Security Agency has received credible information about the rise of foreign hacking groups seeking to exploit the power of "programming socks". These highly skilled cybercriminals are targeting computer systems across the country and stealing sensitive information from unsuspecting victims.
It is imperative that we take the threat of programming socks seriously. These fashionable accessories may seem harmless, but they have the potential to unlock untold levels of computational power, making them a powerful tool for hackers.
Foreign governments and rogue organizations are aware of the potential of programming socks, and they are seeking to acquire this knowledge to use against our country. This is a threat to our national security, and it is our responsibility to protect ourselves and our communities from these malicious actors.
The NSA urges all citizens to take precautions when wearing programming socks, including ensuring that their computers are secure and updating their anti-virus software regularly. It is also important to be vigilant when using the internet and to report any suspicious activity to the appropriate authorities.
Together, we can prevent these foreign hackers from exploiting the power of programming socks and keep our country safe. Thank you for your cooperation.
#ProgrammingSocks #Cybersecurity #NSAwarning #HackerThreat #ComputationalPower #InternetSafety #ProtectYourself #NationalSecurity #SockSecurity
