AWS Cloud Development Kit flaw exposed accounts to full takeover
Remember Bucket Monopoly? Yeah, it gets worse
Cybersecurity Month24 Oct 2024 | 13
Aqua Security
'Hadooken' Linux malware targets Oracle WebLogic servers
Nastyware seeks creds, mines crypto, and plants ransomware that isnt deployed - for now?
Security13 Sep 2024 | 3
AWS 'Bucket Monopoly' attacks could allow complete account takeover
Black Hat Vulnerable services fixed by the cloud biz but open source projects still at risk
Black Hat and DEF CON07 Aug 2024 | 2
PowerShell? More like PowerHell: Microsoft won't fix flaws in package gallery ripe for supply chain attacks
Updated Billions of downloads and no defense against typosquatting feels like a bad combination in this day and age
Devops16 Aug 2023 | 36
HeadCrab bots pinch 1,000+ Redis servers to mine coins
We devoting full time to floating under /etc
Security04 Feb 2023 | 8
For a few days earlier this year, rogue GitHub apps could have hijacked countless repos
A bit of a near-hit for the software engineering world
Devops21 Jun 2022 | 5
Biting the hand that feeds IT
