%term

Is your VPN a silent entry point for attackers?

Sep 17, 2025 By Netwrix In Netwrix

Is your VPN a silent entry point for attackers? Credential stuffing and password spraying exploit weak authentication, giving attackers a way into VPNs and edge network devices — making them prime targets in today’s identity-driven threat landscape. In this snippet, our expert breaks down: Watch the full webinar: Adapting to a New Paradigm in Security – Implementing ITDR in Your SOC: netwrix.com/go/adapting-to-a-new-paradigm-in-security-yt.

View Video

Netwrix

Read more about Is your VPN a silent entry point for attackers?

NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

Sep 16, 2025 By Tom Abai In Mend

The NPM ecosystem has been rocked by one of its widest supply chain attacks to date, with over 187 popular packages compromised by advanced malware capable of self-propagation and automated credential harvesting. This attack, affecting packages with millions of weekly downloads including angulartics2, ngx-toastr, and @ctrl/tinycolor, demonstrates how cybercriminals are evolving their tactics to create “worm-like” malware that can autonomously spread across the software supply chain.

Read Post

Mend

Read more about NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

Shai-Hulud: A Persistent Secret Leaking Campaign

Sep 16, 2025 By Gaetan Ferry In GitGuardian

On September 15, a new supply chain attack was identified that targeted the @ctrl/tinycolor and 150 other NPM packages. The attack scenario was similar to the one used in the s1ngularity and GhostActions campaigns. The threat actors combined a local environment secrets extraction with a malicious GitHub actions workflow injection in accessible projects. The compromised packages' structure has been detailed in blog posts by socket.dev and StepSecurity.

Read Post

GitGuardian

Read more about Shai-Hulud: A Persistent Secret Leaking Campaign

Why DFIR: A Guide to Digital Forensics and Incident Response Services and Retainers

Sep 15, 2025 By Trustwave In Trustwave

No organization likes to contemplate being successfully hit with a cyberattack, but turning a blind eye to the possibility is the exact wrong thing to do. Digital Forensics and Incident Response (DFIR) planning and retainers, like car, home, and health insurance, are a necessity in case the unthinkable happens.

Read Post

Trustwave

Read more about Why DFIR: A Guide to Digital Forensics and Incident Response Services and Retainers

Zero-day Extensive NPM Package Compromise - Shai Hulud Supply Chain Attack

Sep 15, 2025 By Brian Clark In Snyk

This is an ongoing incident and updates will be provided as more information is confirmed.

Read Post

Snyk

Read more about Zero-day Extensive NPM Package Compromise - Shai Hulud Supply Chain Attack

Tales from the fraud frontlines: The growing threat of DDoS attacks - and how to prevent them

Sep 12, 2025 By Joe Kitos In INETCO

Picture this: It’s a busy weekday afternoon and your online payment platform is humming with activity. Suddenly, everything slows down. Customers complain that transactions are failing, your website goes offline, and your team scrambles to figure out what’s happening. The culprit? A Distributed Denial of Service (DDoS) attack.

Read Post

INETCO

Read more about Tales from the fraud frontlines: The growing threat of DDoS attacks - and how to prevent them

npm Supply Chain Attack: What Happened and How to Protect Your Software

Sep 11, 2025 By SignMyCode In SignMyCode

On September 8, 2025, a large-scale npm supply chain attack quickly compromised 18 popular packages (with the 18 packages representing more than 2.6 billion weekly downloads within the bioinformatics ecosystem). Attackers hijacked a maintainer’s account by impersonating npm support in a phishing campaign to upload backdoored versions of popular packages like chalk, debug, ansi-styles, and supports-color.

Read Post

SignMyCode

Read more about npm Supply Chain Attack: What Happened and How to Protect Your Software

Salesloft Drift Supply Chain Attack Affects Hundreds of Businesses

Sep 11, 2025 By Karl Sigler In LevelBlue

LevelBlue’s Security & Compliance Team is aware of the Salesloft vulnerability affecting Drift chatbot integrations. LevelBlue, and its affiliated entities, do not utilize Drift, and Salesforce has confirmed the incident did not impact clients without this integration. Based on current information, we confirm there has been no exposure or impact to us or our clients. Should new information arise that alters this assessment, we will provide an update directly.

Read Post

LevelBlue

Read more about Salesloft Drift Supply Chain Attack Affects Hundreds of Businesses

Advanced Domain Protection and Threat Takedown Solutions for Cybersecurity

Sep 11, 2025 By SecuritySenses In SecuritySenses

The digital landscape has become increasingly hostile, with cybercriminals exploiting domain vulnerabilities to launch sophisticated attacks against organizations worldwide. As businesses expand their online presence, the need for robust domain protection and effective domain takedown mechanisms has never been more critical. Modern enterprises face an evolving threat landscape where malicious actors register deceptive domains to steal credentials, distribute malware, and damage brand reputation through sophisticated phishing campaigns.

Read Post

SecuritySenses

Read more about Advanced Domain Protection and Threat Takedown Solutions for Cybersecurity

Not All Cyberattacks Begin with a Phishing Attack, Hack or Exploited Vulnerability

Sep 10, 2025 By Trustwave In Trustwave

In a day and age when cyber threats are top of mind, it may be difficult for an organization to shift gears and take its physical security precautions into consideration. This is to protect not only a firm’s physical assets but direct access to networks and information that an attacker could use at a later date for a cyberattack.

Read Post