Collaborate Disseminate
Maintainers of the Python Package Index (PyPI) repository were forced to suspend new project creation and new user registration to mitigate a malware upload campaign.
The post Malware Upload Attack Hits PyPI Repository appeared first on SecurityWeek.
Continue reading Malware Upload Attack Hits PyPI Repository
92% of companies had experienced a breach in the prior year due to vulnerabilities of applications developed in-house, according to Checkmarx. AppSec managers and developers share application security duties In recent years the responsibility for appli… Continue reading Organizations are knowingly releasing vulnerable applications
Attackers are exploiting the good reputation and “openness” of the popular public JavaScript software registry NPM to deliver malware and scams, but are also simultaneously and inadvertently launching DoS attacks against the service. Malici… Continue reading Flood of malicious packages results in NPM registry DoS
PyPI, the official third-party software repository for Python packages, is warning about a phishing campaign targeting its users. “We have additionally determined that some maintainers of legitimate projects have been compromised, and malware pub… Continue reading Phishing PyPI users: Attackers compromise legitimate projects to push malware
A vulnerability in the Android version of the Ring app, which is used to remotely manage Amazon Ring outdoor (video doorbell) and indoor surveillance cameras, could have been exploited by attackers to extract users’ personal data and device’s dat… Continue reading Vulnerability in Amazon Ring app allowed access to private camera recordings
In Las Vegas, at Black Hat USA 2022, Checkmarx has released Checkmarx API Security, the “shift-left” API security solution. Building on the launch of Checkmarx Fusion, which prioritizes and correlates vulnerability data from across differen… Continue reading Checkmarx API Security identifies shadow and zombie APIs during software development
In this Help Net Security video, we take you inside Black Hat USA 2022 at the Mandalay Bay Convention Center in Las Vegas. The video features the following vendors: Abnormal Security, Adaptive Shield, Airgap, Akamai, Anomali, Arctic Wolf Networks, Aris… Continue reading Black Hat USA 2022 video walkthrough
Seemplicity announced that it has partnered with Checkmarx, a provider of developer-centric application security testing (AST) solutions. The partnership will see the Checkmarx One Platform integrated within Seemplicity’s Productivity Platform, a… Continue reading Seemplicity collaborates with Checkmarx to improve visibility and operational efficiency for organizations
Checkmarx launched its Managed Security Services Provider (MSSP) program. “The launch of our MSSP Program is a milestone in the Checkmarx journey and a natural extension of our commitment to global excellence in application security enablement,&#… Continue reading Checkmarx releases MSSP program to improve application security for organizations
Cyber Week is a large annual international cybersecurity event, hosted each year at Tel Aviv University in Israel. Cyber Week 2022 is held jointly by the Blavatnik Interdisciplinary Cyber Research Center (ICRC), The Yuval Ne’eman Workshop for Science, … Continue reading Photos: Cyber Week 2022