Guy NachshoninCheckmarx ZeroHijacking S3 Buckets: New Attack Technique Exploited in the Wild by Supply Chain AttackersWithout altering a single line of code, attackers poisoned the NPM package “bignum” by hijacking the S3 bucket serving binaries necessary…Jun 15, 20231Jun 15, 20231
Guy NachshoninCheckmarx ZeroAttacker Uses a Popular TikTok Challenge to Lure Users Into Installing Malicious PackageA trending TikTok challenge called “Invisible Challenge” where the person filming it poses naked while using a special video effect called…Nov 28, 2022Nov 28, 2022