Aviad GershoninCheckmarx ZeroResearchers Are Poisoning Open-Source Packages. What Should We do?These are a few examples of Open-Source security researchers who went a bit too far and some guidelines for preventing these situations.Nov 2, 2022Nov 2, 2022
Aviad GershoninCheckmarx ZeroAttacking the Software Supply Chain with a Simple RenameA vulnerability in GitHub that allows attackers to take control over GitHub repositories belonging to renamed accounts.Oct 26, 2022Oct 26, 2022
Aviad GershoninCheckmarx ZerodYdX Crypto Exchange NPM User Account Hijacked, Credential Stealing Malware Spread on Their BehalfResearchers at “Mend” reported suspicious versions of NPM packages that belong to the dYdX Crypto Exchange. The poisoned packages were…Sep 24, 2022Sep 24, 2022
Aviad GershoninCheckmarx ZeroFirst Known Phishing Attack Against PyPI ContributorFirst Known Phishing Attack Against PyPI Contributor Related to a Large Scale Malicious Typosquatting AttackAug 24, 2022Aug 24, 2022
Aviad GershoninCheckmarx ZeroThreat Actor Publishes 1000+ Malicious PyPi and npm Packages — New Findings in a Recently Reported…New findings bring the total number of malicious packages in a recetn incedent 1000+, including a simple ransomware.Aug 21, 2022Aug 21, 2022
Aviad GershoninCheckmarx ZeroMalicious PyPi User Strikes Again with Typosquatting, StarJacking and Unpacks Tailor-made Malware…A known malicious contributor has published two new Python packages dropping Cobalt Strike BeaconAug 18, 2022Aug 18, 2022
Aviad GershoninCheckmarx Zero“CuteBoi” detected preparing a large-scale crypto mining campaign on NPM usersOver a thousand packages and users were created on NPM using an automated process in the past few days. Is it phase 1 of an upcoming…Jul 7, 2022Jul 7, 2022
Aviad GershoninCheckmarx ZeroSupply Chain Attacks Using Malicious NPM Packages Compromised the Details of Thousands of Web UsersDozens of NPM packages were found using Typosquatting attack to deceive developers into including and ultimately steal end-users’ form dataJul 6, 2022Jul 6, 2022
Aviad GershoninCheckmarx ZeroGithub Repojacking Weakness Exploited in the Wild by AttackersA logical flaw in GitHub allowed attackers to take control over the namespace of thousands of repositories.May 29, 20221May 29, 20221
Aviad GershoninCheckmarx ZeroAttacker Caught Hijacking Packages Using Multiple Techniques to Steal AWS CredentialsAn attacker compromised three popular open-source packages on PyPi and Packagist with millions of downloads combined.May 24, 2022May 24, 2022