2 matches found
Malicious Code Bombs Target Amazon, Lyft, Slack, Zillow
Researchers have spotted malicious packages targeting internal applications for Amazon, Lyft, Slack and Zillow among others inside the npm public code repository — all of which exfiltrate sensitive information. The packages weaponize a proof-of-concept PoC code dependency-confusion exploit that w...
XCSSET Malware targets macOS by infecting Xcode developer projects
By Zara Khan The entry point of XCSSET malware is still unknown to researchers. This is a post from HackRead.com Read the original post: XCSSET Malware targets macOS by infecting Xcode developer projects...