MAL-2023-8412 Malicious code in shithandlers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c769d824071682d21cd70c7c8f9bba7131817158c02e931df79e6936a241a06a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Norwegian Entities Targeted in Ongoing Attacks Exploiting Ivanti EPMM Vulnerability

Advanced persistent threat APT actors exploited a recently disclosed critical flaw impacting Ivanti Endpoint Manager Mobile EPMM as a zero-day since at least April 2023 in attacks directed against Norwegian entities, including a government network. The disclosure comes as part of a new joint...

Threat Source newsletter (Nov. 4, 2021)

Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. A series of vulnerabilities in Microsoft Exchange Server made waves earlier this year for coming under attack. And while they've come and gone from the headlines since then, attackers are still very much paying... This is only the...