14 matches found
Malicious code in sonic-oig-moic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1fff493bb21b5f8074af9673a67846daf27920131c871d6c6056cfb790e9a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-moifc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3dac68759470f86cfd7e18db67655ee0c654417bebe0d05db753ca982fe67a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-moigfc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18972744735759ad2a20c40d97f6d9d7780eef875ed7cb15093c676258672275 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-mopigafifc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 783c93443951833d05e3744db18ee7c67ea409163feb5f3cbfc1ff5b9282ad9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-mopigafc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e2b1c040ebb9a953443d98531a63825e597bb324cedfed6b5b7b9e6d6d8d9e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-moc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0b7e82b209e32cd2a845fd12734efbffffaa9ff845845a82cb59c350236de79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oig-tmoaca (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55a0dcc8ec12dd4329702c494e32b54c6d94421362325cdc23e97419b06bd48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
HHS OIG Report Underscores Challenges of Securing the Cloud
On July 22, 2024, HHS Health and Human Services OIG published a report identifying a need for the Department of Health and Human Services, Office of the Secretary HHS OS to improve key security controls to better protect cloud information systems. The report, while focused on HHS OS, underscores...
U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals
The U.S. Department of Justice DoJ on Thursday unsealed an indictment against a North Korean military intelligence operative for allegedly carrying out ransomware attacks against healthcare facilities in the country and funneling the payments to orchestrate additional intrusions into defense,...
oigrealestate.com Improper Access Control vulnerability OBB-3808046
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
oig-marketing.de Improper Access Control vulnerability OBB-2210549
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Criminals exploited weak checks and old tech to pull off vast COVID benefit fraud
In life, when you encounter something momentuous—a sudden job loss, a routine check-up that revealed an illness you cant afford the medical bills for—you can be assured that the federal or state government has benefits you can apply for it. And where there are benefits, you can also be assured th...
Obamacare Marketplaces Could Improve Information Security
The health insurance marketplaces instituted by the Affordable Care Act and through which tens of millions of Americans have signed up for medical coverage, aren’t doing a bad job of securing sensitive personal information but they could certainly be doing a better job, according a new analysis. ...
Flaws Found in USCIS RFID Card Production System
The system that’s used to produce RFID-enabled identification cards–including permanent resident IDs–by the United States Citizenship and Immigration Service has a number of serious security issues, according to a new report from the Office of the Inspector General at DHS. Among the issues the OI...