MAL-2025-184525 Malicious code in moki-nik-hujikm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357e52ee58679358c50677ac8ad182f86b4a020a906c2fde853ae0cb818cd98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in byted-gulu-ms-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7e4265d07794719fa6a64db194f5b5c070de062f83c208ae9704eaa19fa3645 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Three Recommendations for Creating a Risk-Based Detection and Response Program

It should come as little surprise to most security professionals that keeping pace with the evolution of threat actors has become harder and harder. Maintaining visibility into the threat landscape and on top of external risk vectors is more than a matter of incorporating more point solutions. It...

Malicious code in pdf-a-court-of-wings-and-ruin-a-court-of-thorns-and-roses-3-by-sarah-j-maas-on-iphone-full-chapters- (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2174fa17b82a80a200befb735827435cf962939bd4f99c3e6d4229b13383a793 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

The New Frontier of Enterprise Risk: Nth Parties

By Ran Nahmias, Co-Founder and CBO, Cyberpion The concept of risk in enterprise IT is constantly evolving. And considering recent findings, it’s clear that there’s a risk frontier that’s been underestimated – Nth party risk. Traditional enterprise risk management has focused on two domains:...