Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Dev Sabotages Popular NPM Package to Protest Russian Invasion

Vulnerabilities

Cerberus last edited by

In the latest software supply-chain attack, the code maintainer added malicious code to the hugely popular node-ipc library to replace files with a heart emoji and a peacenotwar module.

https://threatpost.com/dev-sabotages-popular-npm-package-protest-russian-invasion/178972/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

The insurer won’t pay for ‘acts of cyber-war’ or nation-state retaliation attacks.

https://threatpost.com/lloyds-cyber-insurance-exclusions/176669/
Critical RCE Bug in Spring Could Be the Next Log4Shell, Researchers Warn
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

2
Views

The so-called ‘Spring4Shell’ bug has cropped up, so to speak, and could be lurking in literally millions of Java applications.

https://threatpost.com/critical-rce-bug-spring-log4shell/179173/
Apple Rushes Out Patches for 0-Days in MacOS, iOS
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

The vulnerabilities could allow threat actors to disrupt or access kernel activity and may be under active exploit.

https://threatpost.com/apple-rushes-out-patches-0-days-macos-ios/179222/

1 / 1

Dev Sabotages Popular NPM Package to Protest Russian Invasion

Suggested Topics

Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks Vulnerabilities • vulnerabilities • • Cerberus

Critical RCE Bug in Spring Could Be the Next Log4Shell, Researchers Warn Vulnerabilities • vulnerabilities • • Cerberus

Apple Rushes Out Patches for 0-Days in MacOS, iOS Vulnerabilities • vulnerabilities • • Cerberus

Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks
Vulnerabilities • vulnerabilities • • Cerberus

Critical RCE Bug in Spring Could Be the Next Log4Shell, Researchers Warn
Vulnerabilities • vulnerabilities • • Cerberus

Apple Rushes Out Patches for 0-Days in MacOS, iOS
Vulnerabilities • vulnerabilities • • Cerberus