logo
  • About
  • Contact
  • Instant Response
  • Hall of fame
  • COVID-19

Categories

  • Alerts and warnings
  • BU Safe
  • Hit by ransomware?
  • Incident handling
  • News

Noticed a problem?

Report an Incident
–or–

Recent Posts

  • Microsoft Sets Aside $425M for Anticipated GDPR Fine
  • Google Patches Third Chrome Zero-Day of 2023
  • Threat Hunting: Shifting Gears in Query Tuning
  • Shadow IT is increasing and so are the associated security risks
  • The Updated OWASP API Security Top 10 for 2023 is Here

Video

https://www.youtube.com/watch?v=wMsHDH67eb4

RSS NVD Data Feed

  • CVE-2023-33642 (magic_r300-2100m_firmware) 31 May 2023
  • CVE-2023-33641 (magic_r300-2100m_firmware) 31 May 2023
  • CVE-2023-33640 (magic_r300-2100m_firmware) 31 May 2023
  • CVE-2023-33643 (magic_r300-2100m_firmware) 31 May 2023
  • CVE-2023-33628 (magic_r300-2100m_firmware) 31 May 2023

RSS CERT-EU News Feed

Information

  • Privacy & Cookies Policy

This Week in Malware: killing Windows Defender with an npm package

Posted on 17 June 2022

From blog.sonatype.com

This Week in Malware, highlights include malicious npm package ‘flame-vali’ that claims to let developers “bypass any request proxys.” But that’s not quite the case. And, some more dependency confusion packages caught by us.

Read more…

Posted in News

Post navigation

Previous post: Chinese hackers targeted South Asian Entity weeks before the Sophos zero-day bug got fixed
Next post: FirmWire : b Full-System Baseband Firmware Emulation Platform
BU CERT
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie
Mellon University

Other CERTs

  • National Cyber Security Centre
  • US-CERT
  • FORTHcert
Proudly powered by WordPress | Theme: bu-cert by Nan Jiang.